CVE-2002-1857

Name of the Vulnerable Software and Affected Versions jo Webserver version 1.0

Description The issue allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, by making a request to the "WEB-INF." directory with a trailing dot. This affects the software when it is running on Windows.

Recommendations For jo Webserver version 1.0, restrict access to the WEB-INF directory to minimize the risk of exploitation. As a temporary workaround, consider disabling access to the WEB-INF directory until a patch is available.