CVE-2008-5549 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the Sun Java Web Console components in Sun Java System Portal Server 7.1 and 7.2 allows remote attackers to access local files and read the products configuration information via unknown vectors related to access to secure files by ThemeServlet.

Affected Software

Name	Vendor	Start Version	End Version
Java_system_portal_server	Sun	7.1 (including)	7.1 (including)
Java_system_portal_server	Sun	7.2 (including)	7.2 (including)

References

http://secunia.com/advisories/33120
http://securitytracker.com/id?1021380
http://sunsolve.sun.com/search/document.do?assetkey=1-21-124301-12-1
http://sunsolve.sun.com/search/document.do?assetkey=1-21-138686-01-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-243886-1
http://www.securityfocus.com/bid/32770
http://www.vupen.com/english/advisories/2008/3408
https://exchange.xforce.ibmcloud.com/vulnerabilities/47256
http://secunia.com/advisories/33120
http://securitytracker.com/id?1021380
http://sunsolve.sun.com/search/document.do?assetkey=1-21-124301-12-1
http://sunsolve.sun.com/search/document.do?assetkey=1-21-138686-01-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-243886-1
http://www.securityfocus.com/bid/32770
http://www.vupen.com/english/advisories/2008/3408
https://exchange.xforce.ibmcloud.com/vulnerabilities/47256

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5549
CWE	https://cwe.mitre.org/data/definitions/264.html