Vulnerability CVE-2010-0894
Published: 2010-04-13   Modified: 2012-02-13

Description:
Unspecified vulnerability in the Sun Java System Access Manager component in Oracle Sun Product Suite 7.1, 7 2005Q4, and OpenSSO Enterprise 8.0 allows remote attackers to affect confidentiality and integrity via unknown vectors.

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.8/10
4.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None
Affected software
Oracle -> Opensso enterprise 
Oracle -> Sun product suite 
Oracle -> Sun products suite 

 References:
http://www.us-cert.gov/cas/techalerts/TA10-103B.html
http://xforce.iss.net/xforce/xfdb/57750
http://www.securityfocus.com/bid/39457
http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020934.1-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267568-1
http://secunia.com/advisories/39431
Copyright 2024, cxsecurity.com

 

Back to Top