Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2404

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-2404
Last Modified 07 Mar 2011 10:09:08
Published 04 Jun 2008 04:32:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2404

Summary

Stack-based buffer overflow in the request handling implementation in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to execute arbitrary code via an unspecified string field.

Vulnerable Systems

Application

  • Sun Java Asp Server 4.0

  • Sun Java Asp Server 4.0.2


References

SUNALERT - 238184

XF - sunjavasystem-asp-server-bo(42830)

VUPEN - ADV-2008-1742

SECUNIA - 30523

IDEFENSE - 20080603 Sun Java System Active Server Pages Buffer Overflow Vulnerability

SECTRACK - 1020189


Last Updated: 27 May 2016 10:47:51