Information Disclosure Vulnerability in Sun Java System Application Server
CVE-2005-4804

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Application Server
Vendor: CVE Published:; 31 December 2005

Summary

An unspecified information disclosure vulnerability exists in the Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1 and Platform Edition UR1. This vulnerability enables remote attackers to gain access to sensitive .jar files through unknown vectors related to deployed web applications, potentially leading to unauthorized information exposure.

References

http://secunia.com/advisories/16802

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/22261

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2005/1733

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability Reserved
May 25, 2006
Vulnerability published
Dec 31, 2005