CVE-2000-0652

IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string.

Date published : 2000-10-13

http://www.securityfocus.com/bid/1500

http://archives.neohapsis.com/archives/bugtraq/2000-07/0342.html