CVE-2008-2401

Sun Java System Active Server Pages (ASP) Server 4.x contains a file-include based vulnerability (CVE-2008-2401) in the Admin Server that lets remote attackers cause writing or appending to arbitrary files by abusing the first argument to a file included by multiple ASP applications. The issue al...