Lucene search

[email protected]NVD:CVE-2008-5116

HistoryNov 18, 2008 - 12:30 a.m.

CVE-2008-5116

2008-11-1800:30:00

CWE-22

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

Directory traversal vulnerability in idm/includes/helpServer.jsp in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1 allows remote attackers to read arbitrary files in the filesystem of the IDM server via directory traversal sequences in the ext parameter.

Affected configurations

NVD

Node

sunjava_system_identity_managerMatch6.0

sunjava_system_identity_managerMatch6.0sp1

sunjava_system_identity_managerMatch6.0sp2

sunjava_system_identity_managerMatch6.0sp3

sunjava_system_identity_managerMatch6.0sp4

sunjava_system_identity_managerMatch7.0

sunjava_system_identity_managerMatch7.1

References

osvdb.org/49767

secunia.com/advisories/32606

sunsolve.sun.com/search/document.do?assetkey=1-26-243386-1

www.procheckup.com/Vulnerability_PR08-09.php

www.securityfocus.com/archive/1/498487/100/0/threaded

www.securityfocus.com/bid/32262

www.securitytracker.com/id?1021170

www.vupen.com/english/advisories/2008/3128

exchange.xforce.ibmcloud.com/vulnerabilities/46554

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

Related for NVD:CVE-2008-5116

cve1 prion1 nessus1 cvelist1 seebug1