| Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them. |
|
 |
|
|
|
vulnerability announce CVE-2010-0311
Sun Identity Manager: privilege elevation
Synthesis of the vulnerability
| A local or remote attacker can obtain administrator privileges via Sun Identity Manager. |
Severity: 3/4.
Creation date: 13/01/2010.
|
Description of the vulnerability
The Sun Java System Identity Manager 8.1 product can be configured with:
- Sun Java System Access Manager, or
- OpenSSO Enterprise 8.0, or
- IBM Tivoli Access Manager
In this configuration, and when patches 141642-06 or 141642-07 are installed, a local or remote attacker can obtain administrator privileges.
Technical details are unknown. |
Complete Vigil@nce bulletin
Characteristics
Title: Sun Identity Manager: privilege elevation.
Keywords: 141642-06 141642-07 Access Enterprise IBM Identity Java Manager OpenSSO Sun System Tivoli elevation privilege.
Identifiers: 21838, 275010, BID-37755, CVE-2010-0311, VIGILANCE-VUL-9347.
|
Information sources
Solutions for this vulnerability
Computer vulnerabilities tracking service
The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Computer applications vulnerability
|
