Vulnerabilities > CVE-2005-4046 - Man In The Middle vulnerability in SUN products

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

high complexity

sun

NVD

Published: 2005-12-07

Updated: 2011-03-08

Summary

Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote attackers to conduct man-in-the-middle (MITM) attacks and "compromise data privacy."

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java System Application Server 7.0 SUN Java System Application Server 8.1 SUN ONE Application Server 7.0	3

References

http://secunia.com/advisories/17873
http://securitytracker.com/id?1015312
http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102012-1
http://www.securityfocus.com/bid/15728
http://www.vupen.com/english/advisories/2005/2753