Description: Red Hat has issued an update for Stronghold Web Server. This fixes a variant of an older vulnerability allowing remote users to view the source code of any JSP file.
By constructing a malicious URL it is possible to view the unprocessed source code of a JSP file.
Solution: Updated packages are only available from Red Hat Network: http://rhn.redhat.com/
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
