3 matches found
iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Authorization Bypass Vulnerability
iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP Active Server Pages functionality to a web server. More information is...
CVE-2008-2406
The administration application server in Sun Java Active Server Pages ASP Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102...
CVE-2008-2406
The CVE-2008-2406 issue affects Sun Java System Active Server Pages (ASP) Server prior to 4.0.3. The vulnerability allows remote attackers to bypass authentication by sending direct requests to the administration server, which listens on TCP port 5102, enabling unauthorized access to the administ...