CVE-2005-4805 : Unspecified vulnerability in Sun Java System Application Server 7 Standard and P

Unspecified vulnerability in Sun Java System Application Server 7 Standard and Platform Edition 6 and earlier, and 2004Q2 Standard and Platform Edition Update 2 and earlier, allows remote attackers to obtain the source code for Java Server pages (JSP) via unknown vectors.

Published 2005-12-31 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2005-4805

SUN » Java System Application Server » Version: 7.0 Update UR4
cpe:2.3:a:sun:java_system_application_server:7.0:ur4:*:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Enterprise Edition
cpe:2.3:a:sun:java_system_application_server:7.0:*:enterprise:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Platform Edition
cpe:2.3:a:sun:java_system_application_server:7.0:*:platform:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Standard Edition
cpe:2.3:a:sun:java_system_application_server:7.0:*:standard:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0
cpe:2.3:a:sun:java_system_application_server:7.0:*:*:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR5 Platform Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur5:platform:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR5 Standard Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur5:standard:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR1 Standard Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur1:standard:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR2 Platform Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur2:platform:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 6.0 Platform Edition
cpe:2.3:a:sun:java_system_application_server:6.0:*:platform:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR6 Platform Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur6:platform:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR6 Standard Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur6:standard:*:*:*:*:*
Matching versions
SUN » Java System Application Server » Version: 7.0 Update UR2 Standard Edition
cpe:2.3:a:sun:java_system_application_server:7.0:ur2:standard:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2005-4805

EPSS FAQ

0.52%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 66 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2005-4805

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2005-4805

http://www.osvdb.org/19950
http://securitytracker.com/id?1015047

Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101910-1

Patch
http://secunia.com/advisories/17164

Patch;Vendor Advisory
http://www.securityfocus.com/bid/15084

Patch

Jump to

Vulnerability Details : CVE-2005-4805

Products affected by CVE-2005-4805

Exploit prediction scoring system (EPSS) score for CVE-2005-4805

CVSS scores for CVE-2005-4805

References for CVE-2005-4805