|
Note: This is an archival copy of Security Sun Alert 201590 as previously published on http://sunsolve.sun.com. Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1001195.1. |
Category Security Release Phase Resolved Sun Java System Application Server Standard Edition 7 2004Q2 Sun ONE Application Server 7, Standard Edition Sun Java System Application Server Enterprise Edition 7 2004Q2 Sun ONE Application Server 7, Platform Edition Bug Id 6217658 Date of Resolved Release 11-OCT-2005 Impact A security vulnerability in certain releases of the Sun Java System Application Server (listed below) may allow a remote unprivileged user the ability to view the source code of Java Server pages. Contributing Factors This issue can occur in the following releases on all platforms:
Note: Sun Java System Application Server 8 2005Q1 and Sun Java System Application Server 8 PE are not affected by this issue. Symptoms There are no reliable symptoms that would indicate the described issue has been exploited. Workaround There is no workaround. Please see the "Resolution" section below. Resolution This issue is addressed in the following releases:
Sun Java System Application Server 7 Standard Edition Update 7 is available for download at: http://www.sun.com/download/products.xml?id=42ae317c Sun Java System Application Server Platform Edition 7 (Bundled for Solaris 9 OE) Update 7 is available for download at: http://www.sun.com/download/products.xml?id=42ae317a Sun Java System Application Server 7 2004Q2 Standard Edition Update 3 is available for download at: http://www.sun.com/download/products.xml?id=427fe06d Sun Java System Application Server 7 2004Q2 Enterprise Edition Update 3 please check the Sun Online Support Center at: https://osc-amer.sun.com/OSCSW/svcportal?pageName=clselection Attachments This solution has no attachment | |||||||||||||||
|
|