CVE-2007-4025

Sun Java System (SJS) Application Server <9.0 - Info Disclosure

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in Sun Java System (SJS) Application Server 8.1 through 9.0 before 20070724 on Windows allows remote attackers to obtain JSP source code via unspecified vectors.

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25058
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37250
Patch vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103000-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35579
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018452
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201537-1
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26187
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2647

Scores

EPSS 0.0081
EPSS Percentile 74.5%

Details

Status published
Products (3)
sun/java_system_application_server 8.1 (3 CPE variants)
sun/java_system_application_server 8.2 (2 CPE variants)
sun/java_system_application_server 9.0
Published Jul 26, 2007
Tracked Since Feb 18, 2026