CVE-2009-0169

Published: Jan 16, 2009Modified: Apr 23, 2026

9.0

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 8.0 / Impact: 10.0

Source: NVD

Description

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm.

Affected (4)

Products: Sun: Java System Access Manager

1 product

Java System Access Manager

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Sun Java System Access Manager	Version 7.1
Sun Java System Access Manager	Version 7.1
Sun Java System Access Manager	Version 7.1
Sun Java System Access Manager	Version 7.1

Related CWEs

References (12)

http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-02-1

Source: cve@mitre.org

PatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-249106-1

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/33266

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1021604

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/0157

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/47944

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-02-1

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-249106-1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/33266

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securitytracker.com/id?1021604

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/0157

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/47944

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.