Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm.
oryginał ENAV:N/AC:L/Au:S/C:C/I:C/A:CSun Java System Access Manager
APPSun7.1
Powiązane podatności
Sun Java System Access Manager 6.3 through 7.1 and Sun Java System Identity Server 6.1 and 6.2 do not properly...
Unspecified vulnerability in Sun Java System Access Manager (AM) 7.1, when used with certain versions and conf...
Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1 container, does...
Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypa...
Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7.1, and 8 allows rem...