CVE-2001-0031

Description

BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.

Affected products

• broadvision / one-to-one_enterprise_server1.0 – 1.0

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5661
• MISChttp://archives.neohapsis.com/archives/bugtraq/2000-12/0074.html