This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.
The remote host has an application server installed that is affected by
an information disclosure vulnerability.
The version of Sun Java System Application Server installed on the
remote host is potentially affected by an information disclosure
vulnerability. A remote, unauthenticated attacker could exploit this
flaw to read the Web Application configuration files in the WEB-INF or
META-INF directory via a specially crafted request.
See also :
Apply the relevant vendor patch.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true