Remote Code Execution Vulnerability in Sun Java System Access Manager 7.1
CVE-2007-5153

Currently unrated

Key Information:

Vendor
Oracle
Status
Java System Access Manager
Java System Application Server
Vendor
CVE Published:
1 October 2007

Summary

An unspecified vulnerability in Sun Java System Access Manager 7.1, when deployed within a Sun Java System Application Server 8.x container, potentially allows remote attackers to execute arbitrary code. This issue remains due to weak input validation in various components, enabling attackers to manipulate the application behavior and gain unauthorized access. Security practices should be enforced to mitigate risks associated with this vulnerability.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...
vendor-advisoryx_refsource_SUNALERT
http://www.vupen.com/english/advisories/2007/3282
vdb-entryx_refsource_VUPEN
http://sunsolve.sun.com/search/document.do?assetkey=1-66-...
vendor-advisoryx_refsource_SUNALERT

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.