Oracle Java Access Manager And OpenSSO Unspecified Vulnerability Network Vulnerability

Summary

The host is running Access Manager or OpenSSO and is prone to unspecified vulnerability.

Impact

Successful exploitation could allow remote attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to unspecified errors in the application, which allows remote attackers to affect confidentiality and integrity via unknown vectors.

Affected

Sun OpenSSO Enterprise version 8.0, Java System Access Manager version 7.0 and 7.1

References

http://osvdb.org/70580
http://secunia.com/advisories/42986
http://www.vupen.com/english/advisories/2011/0153
http://xforce.iss.net/xforce/xfdb/64811

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4444

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apple iTunes Tutorials Window Security Bypass Vulnerability (Mac OS X)
Apple iTunes Multiple Vulnerabilities - Apr10
Apple Safari JavaScript Implementation Information Disclosure Vulnerability (Windows)
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Mac OS X)
Apache Tomcat Multiple Vulnerabilities - 02 Mar14

Take action and discover your vulnerabilities