CVE-2005-4804

Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1	Patch
http://www.ciac.org/ciac/bulletins/p-305.shtml	Patch
http://www.securityfocus.com/bid/14823	Patch
http://secunia.com/advisories/16802	Patch Vendor Advisory
http://www.vupen.com/english/advisories/2005/1733
https://exchange.xforce.ibmcloud.com/vulnerabilities/22261

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sun:java_system_application_server:8.1::enterprise:::::
	cpe:2.3:a:sun:java_system_application_server:8.1::platform:::::
	cpe:2.3:a:sun:java_system_application_server:8.1:ur1:platform:::::*

Information

Published : 2005-12-30 21:00

Updated : 2017-07-19 18:29

NVD link : CVE-2005-4804

Mitre link : CVE-2005-4804

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

sun

java_system_application_server

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1", "name": "101905", "tags": ["Patch"], "refsource": "SUNALERT"}, {"url": "http://www.ciac.org/ciac/bulletins/p-305.shtml", "name": "P-305", "tags": ["Patch"], "refsource": "CIAC"}, {"url": "http://www.securityfocus.com/bid/14823", "name": "14823", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/16802", "name": "16802", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2005/1733", "name": "ADV-2005-1733", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22261", "name": "sun-java-jar-file-information-disclosure(22261)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-4804", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-12-31T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:sun:java_system_application_server:8.1:*:enterprise:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sun:java_system_application_server:8.1:*:platform:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sun:java_system_application_server:8.1:ur1:platform:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-20T01:29Z"}