CVE-2006-0819

Currently unrated

Key Information:

Vendor: Gnome
Status: Dwarf Http Server
Vendor: CVE Published:; 13 March 2006

Summary

Dwarf HTTP Server 1.3.2 allows remote attackers to obtain the source code of JSP files via (1) dot, (2) space, (3) slash, or (4) NULL characters in the filename extension of an HTTP request.

References

http://www.vupen.com/english/advisories/2006/0937

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1015779

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/17123

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Mar 13, 2006
Vulnerability Reserved
Feb 21, 2006