header-logo
Suggest Exploit
vendor:
Resin
by:
SecurityFocus
7.5
CVSS
HIGH
Information Disclosure
200
CWE
Product Name: Resin
Affected Version From: 3.1.2000
Affected Version To: 3.1.2000
Patch Exists: YES
Related CWE: N/A
CPE: a:caucho:resin
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Microsoft Windows
2007

Caucho Resin Information Disclosure Vulnerabilities

Caucho Resin is prone to multiple information-disclosure vulnerabilities because it fails to adequately sanitize user-supplied data. Attackers can exploit these issues to access potentially sensitive data that may aid in further attacks.

Mitigation:

Ensure that user-supplied data is properly sanitized before being used.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/23985/info

Caucho Resin is prone to multiple information-disclosure vulnerabilities because it fails to adequately sanitize user-supplied data.

Attackers can exploit these issues to access potentially sensitive data that may aid in further attacks.

Resin 3.1.0 is vulnerable; other versions may also be affected.

NOTE: According to the application's 3.1.1 change log, these issues affect the server only when installed on Microsoft Windows. 

http://www.example.com:8080/%20

Navigation

Suggest Exploit

Services By CQR