Sun JS Access Manager And OpenSSO Unspecified Vulnerability Network Vulnerability

Summary

The host is running Access Manager or OpenSSO and is prone to unspecified vulnerability.

Impact

Successful exploitation could allow remote attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application

Solution

Apply the security updates. http://sunsolve.sun.com/search/document.do?assetkey=1-66-267568-1 ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to unspecified errors in the application, allows remote attackers to affect confidentiality and integrity via unknown vectors.

Affected

Sun OpenSSO Enterprise version 8.0, Java System Access Manager version 7.1 and 7.0.2005Q4

References

http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html
http://www.us-cert.gov/cas/techalerts/TA10-103B.html
http://xforce.iss.net/xforce/xfdb/57750

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0894
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Apple Safari Webkit Multiple Vulnerabilities - March 2011
Adobe Reader Multiple Vulnerabilities - Aug07 (Linux)
Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Linux)
Arora Common Name SSL Certificate Spoofing Vulnerability (Linux)
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Windows)

Take action and discover your vulnerabilities