Vulnerabilities > CVE-2007-3700 - Unspecified vulnerability in SUN Java System Access Manager
Attack vector
LOCAL Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Sun Java System Access Manager (formerly Java System Identity Server) before 20070710, when the message debug level is configured in the com.iplanet.services.debug.level property in AMConfig.properties, logs cleartext login passwords, which allows local users to gain privileges by reading /var/opt/SUNWam/debug/amAuth.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 This plugin has been deprecated and either replaced with individual 119465 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 22989 published 2006-11-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=22989 title Solaris 10 (x86) : 119465-17 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(22989); script_version("1.37"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2007-3700", "CVE-2009-0170", "CVE-2009-0348", "CVE-2009-2268", "CVE-2009-2712"); script_name(english:"Solaris 10 (x86) : 119465-17 (deprecated)"); script_summary(english:"Check for patch 119465-17"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 This plugin has been deprecated and either replaced with individual 119465 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/119465-17" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P"); script_cwe_id(79, 200, 255, 264); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2009/06/29"); script_set_attribute(attribute:"plugin_publication_date", value:"2006/11/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 119465 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_119465-17.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 107318 published 2018-03-12 reporter This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107318 title Solaris 10 (sparc) : 119465-17 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(107318); script_version("1.6"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2007-3700", "CVE-2009-0170", "CVE-2009-0348", "CVE-2009-2268", "CVE-2009-2712"); script_name(english:"Solaris 10 (sparc) : 119465-17"); script_summary(english:"Check for patch 119465-17"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 119465-17" ); script_set_attribute( attribute:"description", value: "Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/119465-17" ); script_set_attribute(attribute:"solution", value:"Install patch 119465-17"); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_cwe_id(79, 200, 255, 264); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:119465"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10"); script_set_attribute(attribute:"patch_publication_date", value:"2009/06/29"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("solaris.inc"); showrev = get_kb_item("Host/Solaris/showrev"); if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris"); os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev); if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris"); full_ver = os_ver[1]; os_level = os_ver[2]; if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level); package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev); if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH); package_arch = package_arch[1]; if (package_arch != "sparc") audit(AUDIT_ARCH_NOT, "sparc", package_arch); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamclnt", version:"6.3,REV=04.12.14.01.46") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamcon", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamconsdk", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamfcd", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWampwd", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsam", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsdk", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsdkconfig", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsfodb", version:"6.3,REV=04.12.14.01.46") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsvc", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119465-17", obsoleted_by:"", package:"SUNWamsvcconfig", version:"6.2,REV=04.04.23.20.25") < 0) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : solaris_get_report() ); } else { patch_fix = solaris_patch_fix_get(); if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10"); tested = solaris_pkg_tests_get(); if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWamclnt / SUNWamcon / SUNWamconsdk / SUNWamfcd / SUNWampwd / etc"); }NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_119465-17.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 107821 published 2018-03-12 reporter This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107821 title Solaris 10 (x86) : 119465-17 NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 23611 published 2006-11-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/23611 title Solaris 9 (x86) : 119465-17 NASL family Solaris Local Security Checks NASL id SOLARIS8_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 23415 published 2006-11-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/23415 title Solaris 8 (sparc) : 119465-17 NASL family Solaris Local Security Checks NASL id SOLARIS10_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 This plugin has been deprecated and either replaced with individual 119465 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 22956 published 2006-11-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=22956 title Solaris 10 (sparc) : 119465-17 (deprecated) NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 23466 published 2006-11-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/23466 title Solaris 8 (x86) : 119465-17 NASL family Solaris Local Security Checks NASL id SOLARIS9_119465.NASL description Sun Java(TM) System Access Manager 6 2005Q1. Date this patch was last updated by Sun : Jun/29/09 last seen 2020-06-01 modified 2020-06-02 plugin id 23553 published 2006-11-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/23553 title Solaris 9 (sparc) : 119465-17
References
- http://osvdb.org/37249
- http://secunia.com/advisories/26030
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101918-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-200386-1
- http://www.securityfocus.com/bid/24859
- http://www.securitytracker.com/id?1018370
- http://www.vupen.com/english/advisories/2007/2496
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35339