Security Advisory

CVE-2001-1372

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2003-04-02 05:00:00

Last updated 2024-08-08 04:51:08

Assigner mitre

State PUBLISHED

Description

Oracle 9i Application Server 1.0.2 allows remote attackers to obtain the physical path of a file under the server root via a request for a non-existent .JSP file, which leaks the pathname in an error message.

← Browse all CVEs View on cve.org ↗