Vulnerabilities > CVE-2009-2713 - Information Disclosure vulnerability in SUN Java System Access Manager and Java System web Server

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

sun

nessus

NVD

Published: 2009-08-07

Updated: 2009-08-15

Summary

The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 and 7.1, when Cross Domain Single Sign On (CDSSO) is enabled, does not ensure that "policy advice" is presented to the correct client, which allows remote attackers to obtain sensitive information via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java System Access Manager 6.3_2005Q1 SUN Java System Access Manager 7.1 SUN Java System Access Manager 7_2005Q4 SUN Java System Access Manager 7.0_2005Q4 SUN Java System WEB Server 7.0	31

Nessus

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_X86_126357-06.NASL
description	Sun Java System Access Manager 7.1 Solaris_x86. Date this patch was last updated by Sun : Apr/23/11
last seen	2020-06-01
modified	2020-06-02
plugin id	107950
published	2018-03-12
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/107950
title	Solaris 10 (x86) : 126357-06
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(107950); script_version("1.6"); script_cvs_date("Date: 2019/10/25 13:36:27"); script_cve_id("CVE-2008-2945", "CVE-2008-3529", "CVE-2008-4225", "CVE-2008-4226", "CVE-2009-0169", "CVE-2009-0170", "CVE-2009-0348", "CVE-2009-2268", "CVE-2009-2712", "CVE-2009-2713", "CVE-2011-0844", "CVE-2011-0847", "CVE-2011-3506"); script_name(english:"Solaris 10 (x86) : 126357-06"); script_summary(english:"Check for patch 126357-06"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 126357-06" ); script_set_attribute( attribute:"description", value: "Sun Java System Access Manager 7.1 Solaris_x86. Date this patch was last updated by Sun : Apr/23/11" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/126357-06" ); script_set_attribute(attribute:"solution", value:"Install patch 126357-06"); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_cwe_id(20, 79, 119, 189, 200, 255, 264, 399); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:126357"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10"); script_set_attribute(attribute:"patch_publication_date", value:"2011/04/23"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("solaris.inc"); showrev = get_kb_item("Host/Solaris/showrev"); if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris"); os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev); if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris"); full_ver = os_ver[1]; os_level = os_ver[2]; if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level); package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev); if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH); package_arch = package_arch[1]; if (package_arch != "i386") audit(AUDIT_ARCH_NOT, "i386", package_arch); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamclnt", version:"7.1,REV=06.11.22.00.23") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamcon", version:"7.1,REV=06.11.22.00.22") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamconsdk", version:"7.1,REV=06.11.22.00.22") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamdistauth", version:"7.1,REV=06.11.22.00.23") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamext", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamfcd", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWampwd", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamrsa", version:"7.1,REV=06.06.28.17.03") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsam", version:"7.1,REV=06.11.20.12.26") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsci", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsdk", version:"7.1,REV=07.01.18.06.04") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsdkconfig", version:"7.1,REV=06.12.15.12.35") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsfodb", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsvc", version:"7.1,REV=06.12.19.15.12") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamsvcconfig", version:"7.1,REV=06.11.20.12.28") < 0) flag++; if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"126357-06", obsoleted_by:"", package:"SUNWamutl", version:"7.1,REV=07.01.18.05.38") < 0) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_HOLE, extra : solaris_get_report() ); } else { patch_fix = solaris_patch_fix_get(); if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10"); tested = solaris_pkg_tests_get(); if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWamclnt / SUNWamcon / SUNWamconsdk / SUNWamdistauth / SUNWamext / etc"); }

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_120954.NASL
description	AM 7.0: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10 This plugin has been deprecated and either replaced with individual 120954 patch-revision plugins, or deemed non-security related.
last seen	2019-02-21
modified	2018-07-30
plugin id	36756
published	2009-04-23
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=36756
title	Solaris 10 (sparc) : 120954-12 (deprecated)
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(36756); script_version("1.16"); script_cvs_date("Date: 2019/10/25 13:36:26"); script_cve_id("CVE-2006-0531", "CVE-2008-2945", "CVE-2008-3529", "CVE-2008-4225", "CVE-2008-4226", "CVE-2009-0170", "CVE-2009-0348", "CVE-2009-2268", "CVE-2009-2712", "CVE-2009-2713", "CVE-2010-4444"); script_name(english:"Solaris 10 (sparc) : 120954-12 (deprecated)"); script_summary(english:"Check for patch 120954-12"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "AM 7.0: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10 This plugin has been deprecated and either replaced with individual 120954 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/120954-12" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(20, 79, 119, 189, 200, 255, 264, 399); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2010/11/03"); script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 120954 instead.");

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_X86_126357.NASL
description	Sun Java System Access Manager 7.1 Solaris_x86. Date this patch was last updated by Sun : Jun/19/09
last seen	2016-09-26
modified	2011-09-18
plugin id	30014
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30014
title	Solaris 5.9 (x86) : 126357-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_X86_120955-12.NASL
description	AM 7.0_x86: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10
last seen	2020-06-01
modified	2020-06-02
plugin id	107871
published	2018-03-12
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/107871
title	Solaris 10 (x86) : 120955-12

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_120954.NASL
description	AM 7.0: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10
last seen	2020-06-01
modified	2020-06-02
plugin id	37533
published	2009-04-23
reporter	This script is Copyright (C) 2009-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/37533
title	Solaris 9 (sparc) : 120954-12

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_120954-12.NASL
description	AM 7.0: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10
last seen	2020-06-01
modified	2020-06-02
plugin id	107369
published	2018-03-12
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/107369
title	Solaris 10 (sparc) : 120954-12

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_126356-06.NASL
description	Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Apr/23/11
last seen	2020-06-01
modified	2020-06-02
plugin id	107450
published	2018-03-12
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/107450
title	Solaris 10 (sparc) : 126356-06

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_X86_126356.NASL
description	Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Jun/19/09
last seen	2016-09-26
modified	2011-09-18
plugin id	44085
published	2010-01-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=44085
title	Solaris 5.9 (x86) : 126356-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_126356.NASL
description	Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Jun/19/09
last seen	2018-09-01
modified	2018-08-22
plugin id	30007
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30007
title	Solaris 5.10 (sparc) : 126356-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_X86_120955.NASL
description	AM 7.0_x86: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10
last seen	2020-06-01
modified	2020-06-02
plugin id	38005
published	2009-04-23
reporter	This script is Copyright (C) 2009-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/38005
title	Solaris 9 (x86) : 120955-12

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_120954.NASL
description	AM 7.0: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10
last seen	2020-06-01
modified	2020-06-02
plugin id	37271
published	2009-04-23
reporter	This script is Copyright (C) 2009-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/37271
title	Solaris 8 (sparc) : 120954-12

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_X86_126357.NASL
description	Sun Java System Access Manager 7.1 Solaris_x86. Date this patch was last updated by Sun : Jun/19/09
last seen	2018-09-01
modified	2018-08-22
plugin id	30010
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30010
title	Solaris 5.10 (x86) : 126357-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_126356.NASL
description	Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Jun/19/09
last seen	2016-09-26
modified	2011-09-18
plugin id	30011
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30011
title	Solaris 5.8 (sparc) : 126356-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_126356.NASL
description	Sun Java System Access Manager 7.1 Solaris. Date this patch was last updated by Sun : Jun/19/09
last seen	2016-09-26
modified	2011-09-18
plugin id	30013
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30013
title	Solaris 5.9 (sparc) : 126356-03

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_X86_120955.NASL
description	AM 7.0_x86: Sun Java System Access Manager 2005Q4. Date this patch was last updated by Sun : Nov/03/10 This plugin has been deprecated and either replaced with individual 120955 patch-revision plugins, or deemed non-security related.
last seen	2019-02-21
modified	2018-07-30
plugin id	38126
published	2009-04-23
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=38126
title	Solaris 10 (x86) : 120955-12 (deprecated)

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_X86_126357.NASL
description	Sun Java System Access Manager 7.1 Solaris_x86. Date this patch was last updated by Sun : Jun/19/09
last seen	2016-09-26
modified	2011-09-18
plugin id	30012
published	2008-01-18
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=30012
title	Solaris 5.8 (x86) : 126357-03

Summary

Vulnerable Configurations

Nessus

References