CVE-2001-0179
Allaire JRun 3.0 allows remote attackers to list contents of the WEB-INF directory, and the web.xml file in the WEB-INF directory, via a malformed URL that contains a "."
Date published : 2001-05-07
http://www.allaire.com/handlers/index.cfm?ID=19546&Method=Full