The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Java_system_web_server | Sun | 1.1.2 (including) | 1.1.2 (including) |
| Java_system_web_server | Sun | 1.1.3 (including) | 1.1.3 (including) |
| Java_system_web_server | Sun | 1.1_beta (including) | 1.1_beta (including) |
| Java_system_web_server | Sun | 2.0 (including) | 2.0 (including) |
References
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll\u0026doc=secbull/197\u0026type=0\u0026nav=sec.sba
- http://www.securityfocus.com/bid/1600
- http://www.securityfocus.com/templates/advisory.html?id=2542
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5135
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll\u0026doc=secbull/197\u0026type=0\u0026nav=sec.sba
- http://www.securityfocus.com/bid/1600
- http://www.securityfocus.com/templates/advisory.html?id=2542
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5135