VYPR
Unrated severityNVD Advisory· Published Jan 16, 2009· Updated Jun 16, 2026

CVE-2009-0170

CVE-2009-0170

Description

Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows remote authenticated users with console privileges to discover passwords, and obtain unspecified other "access to resources," by visiting the Configuration Items component in the console.

Affected products

4
  • cpe:2.3:a:sun:java_system_access_manager:6.3:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:sun:java_system_access_manager:6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.0_2005q4:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_access_manager:7.1:*:*:*:*:*:*:*
    • (no CPE)range: 6.3 2005Q1, 7 2005Q4, and 7.1

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.