Unrated severityNVD Advisory· Published Mar 20, 2007· Updated Jun 16, 2026
CVE-2006-7165
CVE-2006-7165
Description
IBM WebSphere Application Server (WAS) 5.0 through 5.1.1.0 allows remote attackers to obtain JSP source code and other sensitive information via certain "special URIs."
Affected products
7cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*
- (no CPE)range: 5.0 – 5.1.1.0
Patches
Vulnerability mechanics
References
5- www-1.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www-1.ibm.com/support/docview.wssnvdVendor Advisory
- secunia.com/advisories/24478nvd
- www.securityfocus.com/bid/22991nvd
- www.vupen.com/english/advisories/2007/0970nvd
News mentions
0No linked articles in our index yet.