CVE Vulnerabilities

CVE-2009-2712

Published: Aug 07, 2009 | Modified: Aug 15, 2009
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.

Affected Software

Name Vendor Start Version End Version
Java_system_access_manager Sun 6.3_2005q1 6.3_2005q1
Java_system_access_manager Sun 7.1 7.1
Java_system_access_manager Sun 7.1 7.1
Java_system_access_manager Sun 7_2005q4 7_2005q4
Java_system_access_manager Sun 7.1 7.1
Java_system_access_manager Sun 6.3_2005q1 6.3_2005q1
Java_system_access_manager Sun 6.3_2005q1 6.3_2005q1
Java_system_access_manager Sun 7_2005q4 7_2005q4
Java_system_access_manager Sun 7_2005q4 7_2005q4

References