TUCoPS :: Web :: Apps :: sexec5.htm

RESIN ServletExec show source using URL encoded characters 
Vulnerability

    ServletExec

Affected

    RESIN ServletExec

Description

    'benjurry' found following.   Resintm serves the fastest  servlets
    and  JSP.   With  Java  and  JavaScript  support,  Resin gives web
    applications the flexibility to choose the right language for  the
    task.   Resin's  leading  XSL  (XML  stylesheet  language) support
    encourages separation of content from formatting.  Resin  provides
    a  fast  servlet  runner  for  IIS  and  PWS,  allowing IIS to run
    servlets and  JSP files.   But On  Resin1.2 (maybe  Resin1.1 also)
    (Win2k  Simplify  Chinese  version),  ServletExec  will return the
    source  code  of  JSP  files  when  you  chage  the  url to encode
    ASCII( That  is to  say,"%2e" instead  of ".").   For example, the
    following URL will display the source of the specified JSP file:

        http://benjurry/benjurry%2ejsp

    Successful exploitation could lead to the disclosure of  sensitive
    information contained within JSP pages.

Solution

    Nothing yet.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH