CVE-2010-4444

CVE-2010-4444 affects Oracle Sun Java System Access Manager and Oracle OpenSSO versions 7, 7.1, and 8. The connected documents describe an unspecified vulnerability that could impact confidentiality, integrity, and availability via unknown vectors, with a CVSSv2 base score of 6.8 (network access,...

CVE-2007-3700

CVE-2007-3700 affects Sun Java System Access Manager (formerly Java System Identity Server) prior to 20070710. When AMConfig.properties sets com.iplanet.services.debug.level to a debug value, the product logs cleartext login passwords to /var/opt/SUNWam/debug/amAuth, enabling a local user to read...