CVE-2008-2406
published 2008-06-04CVE-2008-2406: The administration application server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to bypass authentication via direct…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
The administration application server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sun | java_asp_server | <= 4.0.2 | — |
| sun | java_asp_server | — | — |