Arbitrary Command Execution Vulnerability in Sun Java Web Server Administration Module

Arbitrary Command Execution Vulnerability in Sun Java Web Server Administration Module

CVE-2000-0812 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.

Learn more about our Web App Pen Testing.