Unify Ewave_servletexec
4 CVEs affecting Unify Ewave_servletexec. Latest disclosed: 2001-01-09. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2000-0498 | High | 7.5 | 2000-06-08 | Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case. |
CVE-2000-1114 | | 2001-01-09 | Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20… | |
CVE-2000-1025 | | 2000-12-11 | eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servle… | |
CVE-2000-1024 | | 2000-12-11 | eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute ar… |