Description
Allaire JRun 2.3 server allows remote attackers to obtain source code for executable content by directly calling the SSIFilter servlet.
Affected products
- macromedia / jrun2.3.x – 2.3.x
References
- MAILING_LISThttp://marc.info/?l=bugtraq&m=97236692714978&w=2