Vulnerability Description
Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Java System Communications Express | 2004q2 |
References
- http://secunia.com/advisories/17395PatchVendor Advisory
- http://securitytracker.com/id?1015135
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101948-1PatchVendor Advisory
- http://www.osvdb.org/20448
- http://www.securityfocus.com/bid/15271
- http://www.vupen.com/english/advisories/2005/2274
- http://secunia.com/advisories/17395PatchVendor Advisory
- http://securitytracker.com/id?1015135
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101948-1PatchVendor Advisory
- http://www.osvdb.org/20448
- http://www.securityfocus.com/bid/15271
- http://www.vupen.com/english/advisories/2005/2274
FAQ
What is CVE-2005-3472?
CVE-2005-3472 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files.
How severe is CVE-2005-3472?
CVE-2005-3472 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3472?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Java System Communications Express.