Vulnerability Description
The Online Help feature in Sun Java System Directory Server 5.2 and Enterprise Edition 5 allows remote attackers to determine the existence of files and directories, and possibly obtain partial contents of files, via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Java System Directory Server | 5.0 |
References
- http://osvdb.org/53800
- http://secunia.com/advisories/34751Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-255848-1Vendor Advisory
- http://www.securityfocus.com/bid/34548
- http://www.vupen.com/english/advisories/2009/1059
- http://osvdb.org/53800
- http://secunia.com/advisories/34751Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-255848-1Vendor Advisory
- http://www.securityfocus.com/bid/34548
- http://www.vupen.com/english/advisories/2009/1059
FAQ
What is CVE-2009-1332?
CVE-2009-1332 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Online Help feature in Sun Java System Directory Server 5.2 and Enterprise Edition 5 allows remote attackers to determine the existence of files and directories, and possibly obtain partial conten...
How severe is CVE-2009-1332?
CVE-2009-1332 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-1332?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Java System Directory Server.