Vulnerability Description
Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration information via unknown vectors related to "access to secure files by ThemeServlet."
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Java System Portal Server | 7.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/33120Vendor Advisory
- http://securitytracker.com/id?1021380
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-124301-12-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-138686-01-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-243886-1Vendor Advisory
- http://www.securityfocus.com/bid/32770
- http://www.vupen.com/english/advisories/2008/3408
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47256
- http://secunia.com/advisories/33120Vendor Advisory
- http://securitytracker.com/id?1021380
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-124301-12-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-138686-01-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-243886-1Vendor Advisory
- http://www.securityfocus.com/bid/32770
- http://www.vupen.com/english/advisories/2008/3408
FAQ
What is CVE-2008-5549?
CVE-2008-5549 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the product's configuration informa...
How severe is CVE-2008-5549?
CVE-2008-5549 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-5549?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Java System Portal Server.