Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the <<ALL FILES>> FilePermission.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2001-05-07T04:00:00
Updated: 2024-08-08T04:14:07.386Z
Reserved: 2001-04-04T00:00:00
Link: CVE-2001-0326
Vulnrichment
No data.
NVD
Status : Modified
Published: 2001-05-03T04:00:00.000
Modified: 2024-11-20T23:35:07.573
Link: CVE-2001-0326
Redhat
No data.