This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.
The remote host has software installed that is affected by multiple
The remote host has a version of Adobe JRun installed that contains a
version of jmc-app.ear that is affected by multiple vulnerabilities :
- A directory traversal vulnerability exists in
'logviewer.jsp' in the Management Console that could
allow an authenticated, remote attacker to read
arbitrary files via the 'logfile' parameter.
- Multiple cross-site scripting vulnerabilities exist in
the Management Console that could allow remote attackers
to inject arbitrary web script or HTML via unspecified
See also :
Install the version of jmc-app.ear linked in the advisory.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true