Skip to main content

Add as a preferred source on Google


News

Sun Web Server Hit with Multiple Security Vulnerabilities

A security research firm has found multiple flaws in Web server software from Sun Microsystems that would collectively allow attackers to log on, gain root access, peruse and delete files, and execute malicious commands.

All the vulnerabilities, investigated by iDefense, appear in versions 4.2 and earlier of Sun Java System Active Server Pages, software that allows creation of Active Server Pages across different operating systems and production environments.

Sun has issued an update to the software along with workarounds for administrators who want to keep their original configurations.

The six vulnerabilities are:

The individual who found the vulnerabilities wishes to remain anonymous, according to iDefense. The security company reported the vulnerabilities to Sun on April 4, and the two companies coordinated the public disclosure of the hole yesterday.

The vulnerabilities have been submitted for inclusion to the CVE list of standardized names of security problems.

About the Author

Joab Jackson is the chief technology editor of Government Computing News (GCN.com).

comments powered by Disqus

Featured

  • Hands On with GitHub Copilot App Technical Preview: Turning a Blazor Issue into a PR

    GitHub's brand-new Copilot desktop app, in technical preview, handled a small Blazor issue from planning through pull request creation, but the hands-on test also showed why developers still need to verify agent work in the running app before merging.

  • At Build 2026, Microsoft Sets Up Windows as an OS for AI Agents

    Microsoft's Build 2026 Windows developer announcements point to a broader platform strategy for agentic AI, spanning terminal workflows, local models, app-building skills, Cloud PCs and operating system-level containment.

  • Slammed by Copilot Usage-Based Billing on Day 1, Facing $180 Bill for June

    A journalist using GitHub Copilot Pro details how a broken editorial workflow on day one of usage-based billing led to runaway token consumption, a projected $180 monthly bill, and practical tactics for cutting AI credit burn.

  • AdaBoost.R2 Regression Using C#

    AdaBoost.R2 regression works by building an ensemble of decision trees, training them on reweighted data, and combining their predictions with a weighted median, while also showing how parameter choices affect accuracy and overfitting.

Most   Popular

Subscribe on YouTube