Vulnerabilities > CVE-2007-4511 - Unspecified vulnerability in SUN Java System Application Server 9.00.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply certain configuration changes persistently, which causes the (1) SSL and (2) SSL_MutualAuth ORB listener services to enable all protocols and ciphers after the services are restarted, possibly allowing remote attackers to bypass intended policy.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/45828
- http://osvdb.org/45828
- http://www.securityfocus.com/archive/1/477315/100/0/threaded
- http://www.securityfocus.com/archive/1/477315/100/0/threaded
- http://www.securityfocus.com/bid/25400
- http://www.securityfocus.com/bid/25400
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36169
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36169