2000-10-13 04:00:00
mitre
PUBLISHED
IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string.