Vulnonym.org

CVE-2008-2405 - Quaking Fuks

Description

Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in HTTP requests to unspecified ASP applications.

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=709 http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 http://www.securitytracker.com/id?1020190 http://secunia.com/advisories/30523 http://www.vupen.com/english/advisories/2008/1742/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42829