CVSS: 7.5EPSS: 4%CPEs: 3EXPL: 3CVE-2003-0411 – Sun ONE Application Server 7.0 - Source Disclosure
https://notcve.org/view.php?id=CVE-2003-0411
Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension. Sun ONE Application Server 7.0 para Windows 2000/XP permite atacantes remotos obtener código fuente JSP mediante una petición que usa la extensíon ".JSP", con letras mayúsculas, en lugar de ".jsp", en minúsculas. • https://www.exploit-db.com/exploits/22664 http://marc.info/?l=bugtraq&m=105409846029475&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F55221&zone_32=category%3Asecurity http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000610.1-1 http://www.ciac.org/ciac/bulletins/n-103.shtml http://www.iss.net/security_center/static/12093.php http://www.securityfocus.com/bid/7709 http://www.spidynamics.com/sunone_alert.html • CWE-178: Improper Handling of Case Sensitivity •