Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1084

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2009-1084
Last Modified 16 Apr 2009 01:38:27
Published 25 Mar 2009 11:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1084

Summary

Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote attackers to have an unspecified impact by modifying this object.

Vulnerable Systems

Application

  • Sun Java System Identity Manager 7.0

  • Sun Java System Identity Manager 7.1

  • Sun Java System Identity Manager 7.1.1

  • Sun Java System Identity Manager 8.0


References

SUNALERT - 253267

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-140935-01-1

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-139010-06-1

CONFIRM - http://blogs.sun.com/security/entry/sun_alert_253267_sun_java

XF - jsim-sco-unspecified(49607)

VUPEN - ADV-2009-0797

BID - 34191

SECTRACK - 1021881

SECUNIA - 34380


Last Updated: 27 May 2016 10:50:28