Sun Alert 102854 Security Vulnerability in the Sun Java Web Console May Allow Access to Privileged Data or Lead to Denial of Service

Product: Sun Java Web Console 2.2.3, Solaris 10 Operating System, Sun Java Web Console 2.2.5, Sun Java Web Console 2.2.4, Sun Java Web Console 2.2.2

A security vulnerability in the Sun Java Web Console may allow a local or remote unprivileged user to access privileged data or crash the Java Web Console service, leading to a Denial of Service (DoS) condition.

Sun acknowledges with thanks, Frank Dick of N.RUNS AG (http://www.nruns.com/) for bringing this issue to our attention.

For additional information regarding this issue, see the following:

N.RUNS AG security bulletin at http://www.nruns.com/security_advisory_sun_java_format_string.php

CVE-2007-1681 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1681

Avoidance: Patch, Upgrade
State: Resolved
First released: 17-Apr-2007
Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today