Oracle Java Access Manager And OpenSSO Unspecified Vulnerability Network Vulnerability

Summary

The host is running Access Manager or OpenSSO and is prone to unspecified vulnerability.

Impact

Successful exploitation could allow remote attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to unspecified errors in the application, which allows remote attackers to affect confidentiality and integrity via unknown vectors.

Affected

Sun OpenSSO Enterprise version 8.0, Java System Access Manager version 7.0 and 7.1

References

http://osvdb.org/70580
http://secunia.com/advisories/42986
http://www.vupen.com/english/advisories/2011/0153
http://xforce.iss.net/xforce/xfdb/64811

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4444

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apple Mac OS X Denial of Service Vulnerability
Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
Adobe Reader Multiple Vulnerabilities - Aug07 (Windows)
Asterisk SIP Response Username Enumeration Remote Information Disclosure Vulnerability
Adobe Reader Information Disclosure & Denial of Service Vulnerabilities (Windows)

Take action and discover your vulnerabilities