CVE-2005-4804 - OpenCVE

Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Sun	Java System Application Server

Configuration 1 [-]

OR	cpe:2.3:a:sun:java_system_application_server:8.1::enterprise:::::
	cpe:2.3:a:sun:java_system_application_server:8.1::platform:::::
	cpe:2.3:a:sun:java_system_application_server:8.1:ur1:platform:::::*

References

Link	Resource
http://secunia.com/advisories/16802	Patch Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1	Patch
http://www.ciac.org/ciac/bulletins/p-305.shtml	Patch
http://www.securityfocus.com/bid/14823	Patch
http://www.vupen.com/english/advisories/2005/1733
https://exchange.xforce.ibmcloud.com/vulnerabilities/22261

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-05-25T10:00:00

Updated: 2017-07-19T15:57:01

Reserved: 2006-05-25T00:00:00

Link: CVE-2005-4804

JSON object: View

NVD Information

Status : Modified

Published: 2005-12-31T05:00:00.000

Modified: 2017-07-20T01:29:24.767

Link: CVE-2005-4804

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-09-13T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "16802", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/16802"}, {"name": "sun-java-jar-file-information-disclosure(22261)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22261"}, {"name": "ADV-2005-1733", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/1733"}, {"name": "P-305", "tags": ["third-party-advisory", "government-resource", "x_refsource_CIAC"], "url": "http://www.ciac.org/ciac/bulletins/p-305.shtml"}, {"name": "101905", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1"}, {"name": "14823", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/14823"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-4804", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "16802", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/16802"}, {"name": "sun-java-jar-file-information-disclosure(22261)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22261"}, {"name": "ADV-2005-1733", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/1733"}, {"name": "P-305", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/p-305.shtml"}, {"name": "101905", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1"}, {"name": "14823", "refsource": "BID", "url": "http://www.securityfocus.com/bid/14823"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-4804", "datePublished": "2006-05-25T10:00:00", "dateReserved": "2006-05-25T00:00:00", "dateUpdated": "2017-07-19T15:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sun:java_system_application_server:8.1:*:enterprise:*:*:*:*:*", "matchCriteriaId": "D9F68042-8C22-447E-8C6B-F44DEE5BF389", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:java_system_application_server:8.1:*:platform:*:*:*:*:*", "matchCriteriaId": "7659FD2B-6F83-44F1-B4A1-94D106B4C686", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:java_system_application_server:8.1:ur1:platform:*:*:*:*:*", "matchCriteriaId": "E2A9B4B2-B844-411F-B4C7-9AC60C37A5A3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Sun Java System Application Server Platform Edition and Enterprise Edition 8.1 2005 Q1, and Platform Edition UR1, allows remote attackers to read .jar files via unknown vectors related to deployed web applications."}], "id": "CVE-2005-4804", "lastModified": "2017-07-20T01:29:24.767", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-12-31T05:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/16802"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101905-1"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.ciac.org/ciac/bulletins/p-305.shtml"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/14823"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2005/1733"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22261"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}