This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.
The remote web server is prone to a format string attack.
The remote host is running SUN Java Web Console.
The remote version of this service does not properly sanitize calls
to the syslog function. By sending a specially crafted request
it is possible to exploit this format string error.
An attacker can exploit it to execute code with the privileges of
the web server.
See also :
See the vendor's update for information on workarounds and solutions
to this issue.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true