Oracle Java Access Manager And OpenSSO Unspecified Vulnerability - April11 Network Vulnerability

Summary

The host is running Access Manager or OpenSSO and is prone to unspecified vulnerability.

Impact

Successful exploitation could allow remote attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to unspecified errors in the application, which allow remote attackers to affect confidentiality and integrity via unknown vectors.

Affected

Sun OpenSSO Enterprise version 8.0, Java System Access Manager version 7.1

References

http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0844, CVE-2011-0847

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apple Safari Address Bar Spoofing Vulnerability june-10 (Win)
Apple Safari JavaScript Implementation Information Disclosure Vulnerability (Windows)
Apache CouchDB Web Administration Interface Cross Site Scripting Vulnerability
Adobe Flash Media Server Video Stream Capture Security Issue
Asterisk SIP Response Username Enumeration Remote Information Disclosure Vulnerability

Oracle Java Access Manager and OpenSSO Unspecified Vulnerability - April11

Take action and discover your vulnerabilities