CVE-2000-0812

Published: Nov 14, 2000Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.

Affected (4)

Products: Sun: Java System Web Server

1 product

Java System Web Server

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Sun Java System Web Server	Version 1.1.2
Sun Java System Web Server	Version 1.1.3
Sun Java System Web Server	Version 1.1_beta
Sun Java System Web Server	Version 2.0

References (8)

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/197&type=0&nav=sec.sba

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/1600

Source: cve@mitre.org

http://www.securityfocus.com/templates/advisory.html?id=2542

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5135

Source: cve@mitre.org

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/197&type=0&nav=sec.sba

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/1600

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/templates/advisory.html?id=2542

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5135

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.