Detections
Analytics
Sun Java System ASP Server < 4.0.3 Multiple Vulnerabilities
high Nessus Plugin ID 33440
Language:
Synopsis
The remote web server is affected by several vulnerabilities.Description
The remote host is running Sun Java System Active Server Pages (ASP), or an older variant such as Sun ONE ASP or Chili!Soft ASP.The web server component of the installed version of Active Server Pages on the remote host is affected by several vulnerabilities :
- Several of the administration server's ASP applications fail to filter or escape user input before using it to generate commands before executing them in a shell.
While access to these applications nominally requires authentication, there are reportedly several methods of bypassing authentication (CVE-2008-2405).
- An attacker can bypass administration server authentication by connection to the application server directly and making requests. This issue does not affect ASP Server on a Windows platform (CVE-2008-2406).
Solution
Upgrade to Sun Java System ASP version 4.0.3 or later.See Also
http://www.nessus.org/u?d90b8781
http://www.nessus.org/u?54eb5bc5
https://seclists.org/bugtraq/2008/Jun/30
Plugin Details
Severity: High
ID: 33440
File Name: sun_asp_cmd_injection.nasl
Version: 1.22
Type: remote
Family: Web Servers
Published: 7/8/2008
Updated: 8/5/2020
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.8
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
Exploit Ease: No known exploits are available
Exploited by Nessus: true
Patch Publication Date: 6/3/2008
Reference Information
CVE: CVE-2008-2405, CVE-2008-2406