OSVDB ID: 71949

Title: Oracle OpenSSO Enterprise / Sun Java System Access Manager Authentication Unspecified Remote Issue

Info

Disclosure

Apr 20, 2011

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Apr 20, 2011

Description

Oracle OpenSSO Enterprise and Sun Java System Access Manager contain a flaw related to the Authentication component that may allow a remote attacker to partially affect integrity. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Attack Type Unknown
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.

Products

Oracle Corporation	OpenSSO Enterprise	8.0
Oracle Corporation	Sun Java System Access Manager	7.1

References

CVE ID: 2011-0844 (see also: NVD)
Secunia Advisory ID: 44305
Related OSVDB ID: 71950
News Article: http://www.computerworld.com/s/article/9215838/Oracle_to_fix_73_security_bugs_next_week
Vendor Specific Solution URL: http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html#AppendixSUNS

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/71949

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Oracle Corporation

OpenSSO Enterprise

Sun Java System Access Manager

References

Credit