CVE-2009-0169

Currently unrated

Key Information:

Vendor
Oracle
Status
Java System Access Manager
Vendor
CVE Published:
16 January 2009

Summary

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm.

References

http://www.securitytracker.com/id?1021604
vdb-entryx_refsource_SECTRACK
http://sunsolve.sun.com/search/document.do?assetkey=1-21-...
x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2009/0157
vdb-entryx_refsource_VUPEN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.