Sun Java Directory Server Information Disclosure Vulnerability (Linux) Network Vulnerability

Summary

This host is running Sun Java Directory Server and is prone to Information Disclosure Vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes in the context of the application and can gain sensitive information about the presence of folders and files. Impact level: Application

Solution

Upgrade to Sun Java Directory Server Enterprise 6.0 or later http://www.sun.com/software/products/directory_srvr_ee/get.jsp

Insight

This flaw is due to unspecified error which can be exploited to determine the existence of a file on a system and disclose a single line of the file's content.

Affected

Sun Java System Directory Server 5.2 Sun Java System Directory Server Enterprise 5.0

References

http://secunia.com/advisories/34751

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-1332

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

123 Flash Chat Multiple Security Vulnerabilities
AMSI 'file' Parameter Directory Traversal Vulnerability
/doc directory browsable ?
Apache Subversion Module Metadata Accessible
Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities

Take action and discover your vulnerabilities