Unrated severityNVD Advisory· Published May 16, 2007· Updated Apr 23, 2026

CVE-2007-2441

Description

Caucho Resin Professional 3.1.0 and Caucho Resin 3.1.0 and earlier for Windows allows remote attackers to obtain the system path via certain URLs associated with (1) deploying web applications or (2) displaying .xtp files.

Affected products

Caucho Technology/Resin2 versions
cpe:2.3:a:caucho_technology:resin:*:*:professional_windows:*:*:*:*:*+ 1 more
- cpe:2.3:a:caucho_technology:resin:*:*:professional_windows:*:*:*:*:*range: <=3.1.0
- cpe:2.3:a:caucho_technology:resin:*:*:windows:*:*:*:*:*range: <=3.1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/25286nvdPatchVendor Advisory
www.caucho.com/resin-3.1/changes/changes.xtpnvdPatch
www.rapid7.com/advisories/R7-0030.jspnvdPatch
www.securitytracker.com/idnvdPatch
osvdb.org/36057nvd
www.securityfocus.com/bid/23985nvd
www.vupen.com/english/advisories/2007/1824nvd
exchange.xforce.ibmcloud.com/vulnerabilities/34293nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000