CVE-2004-2216

3 documents3 sources

Severity

5.0MEDIUM

EPSS

0.8%

top 26.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java System Application Server SUN Java System WEB Server

Timeline

PublishedDec 31

Latest updateApr 29

Description

Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier and 6.1 SP1 and earlier, and Application Server 7 Update 4 and earlier, allows remote attackers to cause a denial of service (crash) via a malformed client certificate.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDsun/java_system_application_server7.0

▶NVDsun/java_system_web_server6.0, 6.1+1

Patches

Patch: secunia.com ↗Patch: sunsolve.sun.com ↗Patch: www.osvdb.org ↗

🔴Vulnerability Details

GHSA

GHSA-h882-fqc8-r8p8: Unknown vulnerability in Sun Java System Web Server 6↗2022-04-29

▶

CVEList

CVE-2004-2216: Unknown vulnerability in Sun Java System Web Server 6↗2005-07-17

▶