Remote Code Execution Vulnerability in Sun Java System Access Manager 7.1
CVE-2007-5153

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Access Manager; Java System Application Server
Vendor: CVE Published:; 1 October 2007

What is CVE-2007-5153?

An unspecified vulnerability in Sun Java System Access Manager 7.1, when deployed within a Sun Java System Application Server 8.x container, potentially allows remote attackers to execute arbitrary code. This issue remains due to weak input validation in various components, enabling attackers to manipulate the application behavior and gain unauthorized access. Security practices should be enforced to mitigate risks associated with this vulnerability.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://www.vupen.com/english/advisories/2007/3282

vdb-entryx_refsource_VUPEN

http://sunsolve.sun.com/search/document.do?assetkey=1-66-...

vendor-advisoryx_refsource_SUNALERT

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 1, 2007
Vulnerability Reserved
Sep 30, 2007

Oracle

What is CVE-2007-5153?

References

Timeline