Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMatt MooreEDB-ID:21469
HistoryMay 22, 2002 - 12:00 a.m.

NewAtlanta ServletExec/ISAPI 4.1 - Full Path Disclosure

2002-05-2200:00:00
Matt Moore
www.exploit-db.com
21

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/4793/info

ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems.

ServletExec/ISAPI discloses the absolute path to the webroot directory when sent a specially formatted request without a trailing filename.

This type of sensitive information may aid in further attacks against the host running the vulnerable software.

http://target/servlet/com.newatlanta.servletexec.JSP10Servlet/

Related

nessus 1
nvd 1
cvelist 1
openvas 1
cve 1
nessus
nessus
ServletExec 4.1 ISAPI com.newatlanta.servletexec.JSP10Servlet Path Disclosure
2002-05-22 00:00:00
nvd
nvd
CVE-2002-0892
2002-10-04 04:00:00
cvelist
cvelist
CVE-2002-0892
2003-04-02 05:00:00
openvas
openvas
ServletExec 4.1 ISAPI Physical Path Disclosure
2005-11-03 00:00:00
cve
cve
CVE-2002-0892
2003-04-02 05:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:21469
nessus1nvd1cvelist1openvas1cve1