Community Learn Tools Library Leisure

English

Home > Database > Mysql Tutorial > IBM WebSphere Application Server 3.0.2 存在暴露源代码漏洞_MySQL

IBM WebSphere Application Server 3.0.2 存在暴露源代码漏洞_MySQL

WBOY

Release： 2016-06-01 14:08:29

Original

773 people have browsed it

IBMWebSphere

　　涉及程序：
IBM WebSphere Application Server 3.0.2

描述：
IBM WebSphere Application Server 3.0.2 存在暴露源代码漏洞

详细：
IBM WebSphere Application Server 允许攻击者查看 Web server 根目录以上的所有文件。IBM WebSphere 使用 Java Servlets 处理多种页面类型的分析(如 HTML, JSP, JHTML, 等等)。In addition 不同的 servlets 对不同的页面进行处理，如果一个请求的文件是未进行注册管理的，WebSphere 会使用一个默认的 servlet 作调用。如果文件路径以"/servlet/file/"作开头这个默认的 servlet 会被调用这个请求的文件会未被分析或编译就显示出来。

受影响系统:
IBM WebSphere 3.0.2 的所有版本

举例：
如果一个请求文件的 URL 为 "login.jsp":
http://site.running.websphere/login.jsp
那么访问
http://site.running.websphere/servlet/file/login.jsp
将看到这个文件的源代码。

解决方案：
下载并安装补丁:
http://www-4.ibm.com/software/webservers/appserv/efix.html

相关站点：
http://www-4.ibm.com/software/webservers/appserv/

Related labels：

exist source code loopholes

source：php.cn

Previous article：JDBCTM 指南：入门_MySQL Next article：JDBCTM 指南:入门6-PreparedStatement_MySQL

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

What is a NullPointerException, and how do I fix it?

2024-10-22 09:46:29
From Novice to Coder: Your Journey Begins with C Fundamentals

2024-10-13 13:53:41
Unlocking Web Development with PHP: A Beginner's Guide

2024-10-12 12:15:51
Demystifying C: A Clear and Simple Path for New Programmers

2024-10-11 22:47:31
Unlock Your Coding Potential: C Programming for Absolute Beginners

2024-10-11 19:36:51
Unleash Your Inner Programmer: C for Absolute Beginners

2024-10-11 15:50:41
Automate Your Life with C: Scripts and Tools for Beginners

2024-10-11 15:07:41
PHP Made Easy: Your First Steps in Web Development

2024-10-11 14:21:21
Build Anything with Python: A Beginner's Guide to Unleashing Your Creativity

2024-10-11 12:59:11
The Key to Coding: Unlocking the Power of Python for Beginners

2024-10-11 12:17:31

Latest Issues

function_exists() cannot determine the custom function Function test () {return true;} if (function_exists ('test')) {echo "test is function...

From 2024-04-29 11:01:01

0

3

2204

How to display the mobile version of Google Chrome Hello teacher, how can I change Google Chrome into a mobile version?

From 2024-04-23 00:22:19

0

11

2348

The child window operates the parent window, but the output does not respond. The first two sentences are executable, but the last sentence cannot be implemented.

From 2024-04-19 15:37:47

0

1

1967

There is no output in the parent window document.onclick = function(){ window.opener.document.write('I am the output of the child ...

From 2024-04-18 23:52:34

0

1

1854

Where is the courseware about CSS mind mapping? Courseware

From 2024-04-16 10:10:18

0

0

1915

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template