Unrated severityNVD Advisory· Published Jan 16, 2009· Updated Jun 16, 2026
CVE-2009-0170
CVE-2009-0170
Description
Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows remote authenticated users with console privileges to discover passwords, and obtain unspecified other "access to resources," by visiting the Configuration Items component in the console.
Affected products
4cpe:2.3:a:sun:java_system_access_manager:6.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:sun:java_system_access_manager:6.3:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_access_manager:7.0_2005q4:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_access_manager:7.1:*:*:*:*:*:*:*
- (no CPE)range: 6.3 2005Q1, 7 2005Q4, and 7.1
Patches
Vulnerability mechanics
References
6- sunsolve.sun.com/search/document.donvdPatchVendor Advisory
- sunsolve.sun.com/search/document.donvdPatchVendor Advisory
- www.securityfocus.com/bid/33265nvdPatch
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2009/0156nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/47942nvd
News mentions
0No linked articles in our index yet.