Unrated severityNVD Advisory· Published May 9, 2008· Updated Jun 16, 2026
CVE-2008-2120
CVE-2008-2120
Description
Unspecified vulnerability in Sun Java System Application Server 7 2004Q2 before Update 6, Web Server 6.1 before SP8, and Web Server 7.0 before Update 1 allows remote attackers to obtain source code of JSP files via unknown vectors.
Affected products
5cpe:2.3:a:sun:java_system_application_server:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:java_system_application_server:*:*:*:*:*:*:*:*range: <=7.0
- (no CPE)range: <7 2004Q2 Update 6
cpe:2.3:a:sun:java_system_web_server:7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:java_system_web_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_web_server:*:sp7:*:*:*:*:*:*range: <=6.1
- Range: <6.1 SP8
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.