CVE-2001-1510

CVE-2001-1510 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?" to the requested URL.

Learn more about our Cis Benchmark Audit For Apache Http Server.