← CVECheck
HomeVulnerabilities

CVE-2001-0326 — HIGH severity vulnerability (Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Orac)

Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the <<ALL FILES>> FilePermission.

CVE IDCVE-2001-0326
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-05-03
Last modified2026-04-16
DescriptionOracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the <<ALL FILES>> FilePermission.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →