Authentication Vulnerability in Oracle Sun Products Suite
CVE-2011-3506

Currently unrated

Key Information:

Vendor: Oracle
Status: Sun Products Suite
Vendor: CVE Published:; 18 October 2011

Summary

An unspecified vulnerability within the Oracle OpenSSO component of Oracle Sun Products Suite versions 7.1 and 8.0 allows remote attackers to manipulate the integrity of authentication processes. The exact attack vectors remain unclear, presenting a significant risk to the security of applications relying on this component. Organizations utilizing these versions should assess their exposure and implement appropriate measures to mitigate potential threats.

References

http://secunia.com/advisories/46527

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/46528

third-party-advisoryx_refsource_SECUNIA

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 18, 2011
Vulnerability Reserved
Sep 16, 2011