CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

SUSE CVE•added 2023/02/15 6:8 a.m.•2 views

SUSE CVE-2008-2405

Sun Java Active Server Pages ASP Server before 4.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications...

7.5CVSS7.9AI score0.01414EPSS

Exploits0References3

NVD•added 2008/06/04 8:32 p.m.•15 views

CVE-2008-2406

The administration application server in Sun Java Active Server Pages ASP Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102...

7.5CVSS6.9AI score0.00958EPSS

Exploits0References7

Cvelist•added 2008/06/04 8:0 p.m.•15 views

CVE-2008-2402

The Admin Server in Sun Java Active Server Pages ASP Server before 4.0.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to read password hashes and configuration data via direct requests for unspecified documents...

6.4AI score0.0039EPSS

Exploits1References7

CVE•added 2008/06/04 8:0 p.m.•43 views

CVE-2008-2403

Sun Java System Active Server Pages (ASP) Server before 4.0.3 contains multiple directory traversal vulnerabilities in ASP applications that allow remote attackers to read or delete arbitrary files by supplying a dot-dot sequence in the Path parameter to MapPath. Affected software is the Sun Java...

10CVSS6.8AI score0.00996EPSS

Exploits1References7Affected Software1