Family: Netware --> Category: infos
Netware 6.0 Tomcat source code viewer Vulnerability Scan
Vulnerability Scan Summary
Checks for the Netware 6.0 Tomcat source code viewer vulnerability
Detailed Explanation for this Vulnerability Test
The Apache Tomcat server distributed with Netware 6.0 has a directory
traversal vulnerability. As a result, sensitive information
could be obtained from the Netware server, such as the RCONSOLE
password located in AUTOEXEC.NCF.
Example : http://target/examples/jsp/source.jsp?%2e%2e/%2e%2e/%2e%2e/%2e%2e/system/autoexec.ncf
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.