CVE-2005-1112
IBM Websphere 5.0/5.1/6.0 - Application Server Web Server Root JSP Source Code Disclosure
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IBM WebSphere Application Server 6.0 and earlier, when sharing the document root of the web server, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via an HTTP request with an invalid Host header, which causes the page to be processed by the web server instead of the JSP engine.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2005-04-13 First Exploit
- 2005-04-16 CVE Reserved
- 2005-04-16 CVE Published
- 2024-03-23 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://marc.info/?l=bugtraq&m=111342594129109&w=2 | Mailing List | |
| http://www.osvdb.org/15501 | Vdb Entry | |
| http://www.securityfocus.com/bid/13160 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/20099 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/25420 | 2005-04-13 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/14962 | 2017-07-11 | |
| http://securitytracker.com/id?1013697 | 2017-07-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.1 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.1 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.3 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.4 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.5 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.6 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.6" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.7 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.7" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.8 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.8" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.0.2.9 Search vendor "Ibm" for product "Websphere Application Server" and version "5.0.2.9" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.0 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.0" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.0.2 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.0.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.0.4 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.0.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.0.5 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.0.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.1 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.1.1 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.1.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.1.2 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.1.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 5.1.1.3 Search vendor "Ibm" for product "Websphere Application Server" and version "5.1.1.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Websphere Application Server Search vendor "Ibm" for product "Websphere Application Server" | 6.0 Search vendor "Ibm" for product "Websphere Application Server" and version "6.0" | - |
Affected
| ||||||