Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2120

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-2120
Last Modified 07 Mar 2011 10:08:43
Published 09 May 2008 11:20:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2120

Summary

Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote attackers to obtain source code of JSP files via unknown vectors.

Vulnerable Systems

Application

  • Sun Java System Application Server 7.0

  • Sun Java System Web Server 6.1

  • Sun Java System Web Server 7.0


References

BID - 29088

SUNALERT - 201255

XF - javasystem-jsp-information-disclosure(42266)

VUPEN - ADV-2008-1457

SECTRACK - 1019986

SECTRACK - 1019985

SECUNIA - 30122


Last Updated: 27 May 2016 10:47:46