CVE-2008-3425

Sun Java System Web Server 7.0 - Privilege Escalation

Title source: llm

Description

Unspecified vulnerability in the Sun Java System Web Server 7.0 plugin in Sun N1 Service Provisioning System (SPS) 5.2 and 6.0 allows remote authenticated SPS users to gain administrative access to the web server via unknown attack vectors.

References (6)

[Vendor Advisory] http://secunia.com/advisories/31301

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-239566-1

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30451

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44114

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1020608

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/2261/references

Scores

EPSS 0.0114

EPSS Percentile 78.2%

Classification

CWE

CWE-287

Status draft

Affected Products (3)

sun/java_system_web_server_plugin

sun/n1_service_provisioning_system

Timeline

Published Jul 31, 2008

Tracked Since Feb 18, 2026