Unrated severityNVD Advisory· Published Jun 4, 2008· Updated Jun 16, 2026
CVE-2008-2406
CVE-2008-2406
Description
The administration application server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to bypass authentication via direct requests on TCP port 5102.
Affected products
3cpe:2.3:a:sun:java_asp_server:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sun:java_asp_server:*:*:*:*:*:*:*:*range: <=4.0.2
- cpe:2.3:a:sun:java_asp_server:4.0:*:*:*:*:*:*:*
- Range: <4.0.3
Patches
Vulnerability mechanics
References
7- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- secunia.com/advisories/30523nvd
- sunsolve.sun.com/search/document.donvd
- www.securityfocus.com/bid/29539nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/1742/referencesnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/42833nvd
News mentions
0No linked articles in our index yet.