PT-2000-1706 · Bajie · Bajie Http Web Server

Published

2000-10-20

Updated

2008-09-05

CVE-2000-0774

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Bajie HTTP web server version 0.30a

Description The issue concerns a Java servlet named "test" in the Bajie HTTP web server, which discloses the real pathname of the web document root.

Recommendations For Bajie HTTP web server version 0.30a, consider removing or restricting access to the "test" Java servlet to prevent the disclosure of sensitive path information.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0774

Affected Products

Bajie Http Web Server

PT-2000-1706 · Bajie · Bajie Http Web Server

CVE-2000-0774

Related Identifiers

Affected Products

References · 3