VYPR
Unrated severityNVD Advisory· Published Oct 1, 2007· Updated Jun 16, 2026

CVE-2007-5152

CVE-2007-5152

Description

Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1 container, does not demand authentication after a container restart, which allows remote attackers to perform administrative tasks.

Affected products

8
  • cpe:2.3:a:sun:java_system_access_manager:7.1:*:hp-ux:*:*:*:*:*+ 5 more
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:hp-ux:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_sparc:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_x86:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:windows:*:*:*:*:*
    • (no CPE)range: 7.1
  • cpe:2.3:a:sun:java_system_application_server:9.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sun:java_system_application_server:9.1:*:*:*:*:*:*:*
    • (no CPE)range: 9.1

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.