CVE-2007-4025

Sun Java System (SJS) Application Server <9.0 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in Sun Java System (SJS) Application Server 8.1 through 9.0 before 20070724 on Windows allows remote attackers to obtain JSP source code via unspecified vectors.

References (8)

[Patch, Vendor Advisory] http://secunia.com/advisories/26187

[Patch] http://sunsolve.sun.com/search/document.do?assetkey=1-26-103000-1

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-66-201537-1

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/25058

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35579

[Third Party Advisory, VDB Entry] http://osvdb.org/37250

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1018452

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/2647

Scores

EPSS 0.0078

EPSS Percentile 73.4%

Classification

Status draft

Affected Products (6)

sun/java_system_application_server

Timeline

Published Jul 26, 2007

Tracked Since Feb 18, 2026