https://www.exploit-db.com/exploits/21295
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200205-110

Gnujsp1.0.0和1.0.1版本存在漏洞。远程攻击者可以通过直接向gnujsp伺服程序请求目标文件来列出目录，读取某些脚本的源代码并绕过访问限制，其中，该伺服程序工作不受Jserv限制，并且不处理请求文件。

source: http://www.securityfocus.com/bid/4125/info

GNUJSP is a freely available, open-source implementation of Sun's Java Server Pages. It will run on most Unix and Linux variants, as well as Microsoft Windows NT/2000 operating systems.

It has been reported that a remote attacker may disclose the contents of directories via a specially crafted web request. This may be exploited to list directories, read the contents of arbitrary web-readable files, and disclose script source code. The attacker simply appends the name of the directory and/or file to be disclosed to a web request for /servlets/gnujsp/.

It should be noted that this may allow an attacker to circumvent .htaccess files.

This issue may be the result of a configuration error. 

http://site/servlets/gnujsp/[dirname]/[file]

来源:DEBIAN
名称:DSA-114
链接:http://www.debian.org/security/2002/dsa-114
来源:BUGTRAQ
名称:20020219gnujsp:dir-andscript-disclosure
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=101415804625292&w;=2
来源:BID
名称:4125
链接:http://www.securityfocus.com/bid/4125
来源:XF
名称:gnujsp-jserv-information-disclosure(8240)
链接:http://www.iss.net/security_center/static/8240.php
来源:BUGTRAQ
名称:20020220Re:gnujsp:dir-andscript-disclosure
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=101422432123898&w;=2