The request handler in JBossWS does not correctly verify the resource path when serving WSDL files for custom web service endpoints. This allows remote attackers to read arbitrary XML files with the permissions of the EAP process.