Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
http://secunia.com/advisories/36169
http://sunsolve.sun.com/search/document.do?assetkey=1-21-119465-16-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256668-1
OR
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_10_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_8_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_9_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_10_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_8_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_9_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_10_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_8_sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_9_sparc:*:*:*:*:*
OR
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_10_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_8_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_9_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_10_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_8_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_9_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_10_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_8_x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_9_x86:*:*:*:*:*
OR
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_10_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_8_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:6.3_2005q1:*:solaris_9_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_10_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_8_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_9_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_10_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_8_linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7_2005q4:*:solaris_9_linux:*:*:*:*:*
OR
cpe:2.3:a:sun:java_system_access_manager:7.0_2005q4:*:windows:*:*:*:*:*
cpe:2.3:a:sun:java_system_access_manager:7.1:*:windows:*:*:*:*:*
OR
OR
cpe:2.3:a:sun:java_system_access_manager:7.1:*:war:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
107950 | Solaris 10 (x86) : 126357-06 | Nessus | Solaris Local Security Checks | critical |
107871 | Solaris 10 (x86) : 120955-12 | Nessus | Solaris Local Security Checks | critical |
107821 | Solaris 10 (x86) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
107450 | Solaris 10 (sparc) : 126356-06 | Nessus | Solaris Local Security Checks | critical |
107369 | Solaris 10 (sparc) : 120954-12 | Nessus | Solaris Local Security Checks | critical |
107318 | Solaris 10 (sparc) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
44085 | Solaris 5.9 (x86) : 126356-03 | Nessus | Solaris Local Security Checks | critical |
5133 | Sun Java System Access Manager 7.1 < Patch 3 Multiple Vulnerabilities | Nessus Network Monitor | Web Servers | medium |
38126 | Solaris 10 (x86) : 120955-12 (deprecated) | Nessus | Solaris Local Security Checks | critical |
38005 | Solaris 9 (x86) : 120955-12 | Nessus | Solaris Local Security Checks | critical |
37533 | Solaris 9 (sparc) : 120954-12 | Nessus | Solaris Local Security Checks | critical |
37271 | Solaris 8 (sparc) : 120954-12 | Nessus | Solaris Local Security Checks | critical |
36756 | Solaris 10 (sparc) : 120954-12 (deprecated) | Nessus | Solaris Local Security Checks | critical |
30014 | Solaris 5.9 (x86) : 126357-03 | Nessus | Solaris Local Security Checks | critical |
30013 | Solaris 5.9 (sparc) : 126356-03 | Nessus | Solaris Local Security Checks | critical |
30012 | Solaris 5.8 (x86) : 126357-03 | Nessus | Solaris Local Security Checks | critical |
30011 | Solaris 5.8 (sparc) : 126356-03 | Nessus | Solaris Local Security Checks | critical |
30010 | Solaris 5.10 (x86) : 126357-03 | Nessus | Solaris Local Security Checks | critical |
30007 | Solaris 5.10 (sparc) : 126356-03 | Nessus | Solaris Local Security Checks | critical |
23611 | Solaris 9 (x86) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
23553 | Solaris 9 (sparc) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
23466 | Solaris 8 (x86) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
23415 | Solaris 8 (sparc) : 119465-17 | Nessus | Solaris Local Security Checks | medium |
22989 | Solaris 10 (x86) : 119465-17 (deprecated) | Nessus | Solaris Local Security Checks | medium |
22956 | Solaris 10 (sparc) : 119465-17 (deprecated) | Nessus | Solaris Local Security Checks | medium |