3 matches found
SUSE CVE-2008-2405
Sun Java Active Server Pages ASP Server before 4.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications...
iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Multiple Command Injection Vulnerabilities
iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP Active Server Pages functionality to a web server. More information is...
CVE-2008-2405
CVE-2008-2405 affects Sun Java System Active Server Pages (ASP) Server prior to 4.0.3. The issue is that several of the administration ASP applications fail to filter or escape user input before using it to generate commands, allowing remote attackers to inject shell commands via HTTP requests to...