Java System Access Manager Security Vulnerabilities and Issues — Java System Access Manager CVE List

Lucene search

SunJava System Access Manager

3 matches found

CVE•added 2008/06/30 10:41 p.m.•51 views

CVE-2008-2945

Sun Java System Access Manager 6.3 through 7.1 and Sun Java System Identity Server 6.1 and 6.2 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute arbitrary code via a crafted stylesheet, a related issue to CVE-2007-3715...

7.5CVSS7.2AI score0.06839EPSS

CVE•added 2006/02/04 12:6 a.m.•45 views

CVE-2006-0531

Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool.

7.2CVSS6.5AI score0.00077EPSS

CVE•added 2007/10/01 5:17 a.m.•41 views

CVE-2007-5152

Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1 container, does not demand authentication after a container restart, which allows remote attackers to perform administrative tasks.

7.5CVSS6.9AI score0.01807EPSS