CVE-2006-3231

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions prior to 6.0.2.11

Description The issue allows remote attackers to obtain JSP source code and other sensitive information via URIs with special characters when fileServingEnabled is true.

Recommendations For versions prior to 6.0.2.11, update to version 6.0.2.11 or later to resolve the issue. As a temporary workaround, consider setting fileServingEnabled to false to minimize the risk of exploitation.