CVE-2008-2406

Currently unrated

Key Information:

Vendor: Oracle
Status: Java Asp Server
Vendor: CVE Published:; 4 June 2008

Summary

The administration application server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102.

References

http://www.securityfocus.com/bid/29539

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1020191

vdb-entryx_refsource_SECTRACK

http://sunsolve.sun.com/search/document.do?assetkey=1-66-...

vendor-advisoryx_refsource_SUNALERT

Timeline

Vulnerability published
Jun 4, 2008
Vulnerability Reserved
May 22, 2008