Password Disclosure Vulnerability in Sun Java System Access Manager
CVE-2009-0170

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Access Manager
Vendor: CVE Published:; 16 January 2009

Summary

A vulnerability in Sun Java System Access Manager allows remote authenticated users with console privileges to potentially discover sensitive passwords and gain unauthorized access to various resources through its Configuration Items component. This exposure can lead to further compromise of user accounts and sensitive data.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-21-...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/33265

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1021605

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 16, 2009
Vulnerability Reserved
Jan 16, 2009