Summary
This host is running Sun Java Directory Server and is prone to Information Disclosure Vulnerability.
Impact
Successful exploitation will let the attacker execute arbitrary codes in the context of the application and can gain sensitive information about the presence of folders and files.
Impact level: Application
Solution
Upgrade to Sun Java Directory Server Enterprise 6.0 or later http://www.sun.com/software/products/directory_srvr_ee/get.jsp
Insight
This flaw is due to unspecified error which can be exploited to determine the existence of a file on a system and disclose a single line of the file's content.
Affected
Sun Java System Directory Server 5.2
Sun Java System Directory Server Enterprise 5.0
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2009-1332 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- 11in1 Cross Site Request Forgery and Local File Include Vulnerabilities
- Apache Tomcat TroubleShooter Servlet Installed
- Adiscon LogAnalyzer 'highlight' Parameter Cross Site Scripting Vulnerability
- Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability
- Adobe ColdFusion Multiple Path Disclosure Vulnerabilities