Allaire JRun contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to com.livesoftware.jrun.plugins.ssi.SSIFilter not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to gain access to a JSP file source.
Remote / Network Access
Loss of Confidentiality
Currently, there are no known workarounds or upgrades to correct this issue. However, Allaire has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.