Unrated severityNVD Advisory· Published Jun 4, 2008· Updated Apr 23, 2026
CVE-2008-2406
CVE-2008-2406
Description
The administration application server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102.
Affected products
2cpe:2.3:a:sun:java_asp_server:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:java_asp_server:*:*:*:*:*:*:*:*range: <=4.0.2
- cpe:2.3:a:sun:java_asp_server:4.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- secunia.com/advisories/30523nvd
- sunsolve.sun.com/search/document.donvd
- www.securityfocus.com/bid/29539nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/1742/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/42833nvd
News mentions
0No linked articles in our index yet.