CVE-2005-1601

Name of the Vulnerable Software and Affected Versions MRO Maximo Self Service versions 4 and 5

Description The issue allows remote attackers to obtain sensitive information by making a direct request for certain files, such as MXServer.properties, which are stored under the web document root using file extensions that are not processed by Tomcat.

Recommendations For versions 4 and 5, consider restricting access to sensitive files, such as MXServer.properties, to prevent unauthorized disclosure of information. As a temporary workaround, restrict access to the web document root to minimize the risk of exploitation.