Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.
Max CVSS
7.5
EPSS Score
0.64%
Published
2001-08-22
Updated
2018-05-03
1 vulnerabilities found