Remote File Access Vulnerability in Oracle iPlanet Web Server by Oracle
CVE-2009-2445

Currently unrated

Key Information:

Vendor

Oracle

Vendor
CVE Published:
13 July 2009

What is CVE-2009-2445?

Oracle iPlanet Web Server versions 6.1 prior to Service Pack 12 and 7.0 until Update 6 on Windows systems are vulnerable to a remote file access issue. This vulnerability allows attackers to read arbitrary JSP files by using an alternate data stream syntax, exemplified by the URI pattern .jsp::$DATA. Such exploitation could lead to unauthorized information disclosure, allowing attackers to obtain sensitive data stored within JSP files.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.