Vulnerabilities > CVE-2007-1419 - Local Unauthorized Access vulnerability in SUN Java Dynamic Management KIT 5.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by operating a server application accessed by a privileged remote authenticated user.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS8_119044.NASL description JDMK 5.1: patch for Solaris 8 9 10 8_x86 9_x86 10_x86. Date this patch was last updated by Sun : Mar/15/11 last seen 2020-06-01 modified 2020-06-02 plugin id 24853 published 2007-03-18 reporter This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/24853 title Solaris 8 (sparc) : 119044-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_119044.NASL description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11 last seen 2018-09-01 modified 2018-08-13 plugin id 24848 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24848 title Solaris 5.10 (x86) : 119044-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_124939.NASL description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. This plugin has been deprecated and either replaced with individual 124939 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 24846 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24846 title Solaris 10 (sparc) : 124939-05 (deprecated) NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_119044.NASL description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11 last seen 2017-10-29 modified 2011-09-18 plugin id 24860 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24860 title Solaris 5.9 (x86) : 119044-04 NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_119044.NASL description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11 last seen 2017-10-29 modified 2011-09-18 plugin id 24855 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24855 title Solaris 5.8 (x86) : 119044-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_124939.NASL description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. This plugin has been deprecated and either replaced with individual 124939 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 24850 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24850 title Solaris 10 (x86) : 124939-05 (deprecated) NASL family Solaris Local Security Checks NASL id SOLARIS9_119044.NASL description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11 last seen 2017-10-29 modified 2011-09-18 plugin id 24857 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24857 title Solaris 5.9 (sparc) : 119044-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_119044.NASL description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11 last seen 2018-09-01 modified 2018-08-13 plugin id 24844 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24844 title Solaris 5.10 (sparc) : 119044-04