 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.900195 |
| Categoría: | Web application abuses |
| Título: | Sun Java System Access Manager Information Disclosure vulnerability |
| Resumen: | Java System Access Manager is prone to an information disclosure vulnerability. |
| Descripción: | Summary: Java System Access Manager is prone to an information disclosure vulnerability. Vulnerability Insight: Error in CDCServlet component is caused when 'Cross Domain Single Sign On' (CDSSO) is enabled which does not ensure that 'policy advice' is presented to the correct client, which can be exploited via unspecified vectors. Vulnerability Impact: Successful exploitation could allow remote unprivileged user to gain the sensitive information. Affected Software/OS: Java System Access Manager version 7.0 2005Q4 and 7.1 Solution: Apply the security updates from the referenced advisories. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-2713 BugTraq ID: 35961 http://www.securityfocus.com/bid/35961 http://secunia.com/advisories/36167 http://sunsolve.sun.com/search/document.do?assetkey=1-66-255968-1 http://www.vupen.com/english/advisories/2009/2176 |
| Copyright | Copyright (C) 2009 Greenbone AG |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |