Sun Java System Directory Server Remote Unauthorized Access Vulnerability
TITLE: Sun Java System Directory Server Remote Unauthorized Access Vulnerability
CLASS: Access Validation Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 13 2007 12:00AM
UPDATE: Jun 14 2007 07:19PM
CREDIT: The vendor disclosed this issue.
VULNERABLE:
Sun Java System Directory Server 5.2 Patch4NOT VULNERABLE:
Sun Java System Directory Server 5.2 Patch3
Sun Java Directory Server Enterprise Edition 6.0
Vai alla pagina originale su Security Focus
Discussion
Sun Java System Directory Server is prone to a remote unauthorized-access vulnerability.
Attackers can exploit this issue to gain unauthorized access and perform certain modifications to the data on the directory server.
Exploit
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
Solution
Solution:
The vendor has released an advisory and fixes to address this issue. Please see the references for details.
Sun Java System Directory Server 5.2 Patch4
- Sun AIX: 117670-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117670-04&method=hs - Sun HP-UX: 117669-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117669-04&method=hs - Sun HP-UX: 121393-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=121393-02&method=hs - Sun Linux: 117668-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117668-04&method=hs - Sun Linux: 118080-12
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=118080-12&method=hs - Sun Solaris SPARC: 115614-27
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=115614-27&method=hs - Sun Solaris SPARC: 117665-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117665-04&method=hs - Sun Solaris x86: 115615-27
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=115615-27&method=hs - Sun Solaris x86: 117666-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117666-04&method=hs - Sun Windows: 117667-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117667-04&method=hs - Sun Windows: 121392-03
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=121392-03&method=hs
Sun Java System Directory Server 5.2 Patch3
- Sun AIX: 117670-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117670-04&method=hs - Sun HP-UX: 117669-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117669-04&method=hs - Sun HP-UX: 121393-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=121393-02&method=hs - Sun Linux: 117668-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117668-04&method=hs - Sun Linux: 118080-12
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=118080-12&method=hs - Sun Solaris SPARC: 115614-27
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=115614-27&method=hs - Sun Solaris SPARC: 117665-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117665-04&method=hs - Sun Solaris x86: 115615-27
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=115615-27&method=hs - Sun Solaris x86: 117666-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117666-04&method=hs - Sun Windows: 117667-04
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=117667-04&method=hs - Sun Windows: 121392-03
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=121392-03&method=hs
Sun Java Directory Server Enterprise Edition 6.0
- Sun HP-UX: 125310-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=125310-02&method=hs - Sun HP-UX: 126752-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126752-01&method=hs - Sun Linux: 125309-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=125309-02&method=hs - Sun Linux: 126751-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126751-01&method=hs - Sun Solaris 10 x86/x64: 125278-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=125278-02&method=hs - Sun Solaris 10 x86/x64: 126750-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126750-01&method=hs - Sun Solaris 9 x86: 125277-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=125277-02&method=hs - Sun Solaris 9 x86: 126749-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126749-01&method=hs - Sun Solaris SPARC: 125276-02
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=125276-02&method=hs - Sun Solaris SPARC: 126748-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126748-01&method=hs - Sun Windows: 126753-01
http://sunsolve.sun.com/private-cgi/pdownload.pl?target=126753-01&method=hs
References
References:
- Sun Java System Directory Server Homepage (Sun)
- 102875: Security Vulnerability in Sun Java System Directory Server May Allow Una (Sun)