ID CVE-2007-1681
Summary Format string vulnerability in libwebconsole_services.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service (application crash), obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt, related to syslog. Root level code execution is only possible if the web console is running as root, which it does not by default. The vendor has addressed this issue through multiple product updates: Sun Java Web Console 2.2.2 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console x86 2.2.2 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console x86 2.2.3 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console 2.2.3 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console x86 2.2.4 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console 2.2.4 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console x86 2.2.5 http://www.sun.com/download/products.xml?id=461d58be Sun Java Web Console 2.2.5 http://www.sun.com/download/products.xml?id=461d58be
References
Vulnerable Configurations
  • cpe:2.3:a:sun:java_web_console:2.2.2:*:x86:*:*:*:*:*
    cpe:2.3:a:sun:java_web_console:2.2.2:*:x86:*:*:*:*:*
  • cpe:2.3:a:sun:java_web_console:2.2.3:*:x86:*:*:*:*:*
    cpe:2.3:a:sun:java_web_console:2.2.3:*:x86:*:*:*:*:*
  • cpe:2.3:a:sun:java_web_console:2.2.4:*:x86:*:*:*:*:*
    cpe:2.3:a:sun:java_web_console:2.2.4:*:x86:*:*:*:*:*
  • cpe:2.3:a:sun:java_web_console:2.2.5:*:x86:*:*:*:*:*
    cpe:2.3:a:sun:java_web_console:2.2.5:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10.0:hw2:*:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10.0:hw2:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 16-10-2018 - 16:40)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
oval via4
accepted 2009-08-10T04:00:02.535-04:00
class vulnerability
contributors
  • name Pai Peng
    organization Opsware, Inc.
  • name Pai Peng
    organization Hewlett-Packard
description Format string vulnerability in libwebconsole_services.so in Sun Java Web Console 2.2.2 through 2.2.5 allows remote attackers to cause a denial of service (application crash), obtain sensitive information, and possibly execute arbitrary code via unspecified vectors during a failed login attempt, related to syslog.
family unix
id oval:org.mitre.oval:def:1252
status accepted
submitted 2007-06-15T09:00:00.000-04:00
title Format string vulnerability in Sun Java Web Console
version 32
refmap via4
bid 23539
bugtraq 20070417 n.runs-SA-2007.007 - Sun Solaris 10 - Format string vulnerability
misc http://www.nruns.com/security_advisory_sun_java_format_string.php
osvdb 34902
sectrack 1017930
secunia 24927
sunalert 102854
vupen ADV-2007-1443
xf javawebconsole-libcsyslog-format-string(33731)
Last major update 16-10-2018 - 16:40
Published 19-04-2007 - 10:19
Back to Top