SynopsisThe remote web server is prone to a format string attack.
DescriptionThe remote host is running SUN Java Web Console.
The remote version of this service does not properly sanitize calls to the syslog function. By sending a specially crafted request it is possible to exploit this format string error.
An attacker can exploit it to execute code with the privileges of the web server.
SolutionSee the vendor's update for information on workarounds and solutions to this issue.