CVE-2001-0404

JavaServer Web Dev Kit 1.0.1 - Directory Traversal via WEB-INF HTTP Request

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in JavaServer Web Dev Kit (JSWDK) 1.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request to the WEB-INF directory.

References (1)

Core 1
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=98583089425166&w=2

Scores

EPSS 0.0058
EPSS Percentile 69.0%

Details

Status published
Products (1)
sun/javaserver_web_dev_kit 1.0.1
Published Jun 18, 2001
Tracked Since Feb 18, 2026