| 网管联盟 | 网管论坛 | 网管u家 | 网管博客 | 网管软件 | 网管求职 | 小游戏 | 网管搜索 | 网管原创 | 网管聚合 | 网管读摘 | 网管焦点 | 世界素材 | 会员投稿 | 会员中心 |
|
| Windows Linux Cisco 网络技术 数据库 黑客攻防 DotNet Java PHP 认证 新闻资讯 服务器 存储资讯 网络设备 网管学堂 技术专题 焦点 网吧频道 |
Impact: Execution of arbitrary code via network, User access via network
Vendor Confirmed: Yes
Advisory: Sun Alert
Version(s): 7.1
Description: A vulnerability was reported in Sun Java System Access Manager. A remote user can gain access to the target application or execute arbitrary code on the target system. 网管u家u.bitsCN.com
When installed in a Sun Java System Application Server version 9.1 container and the container is restarted, applications using container-based authentication will grant access without authentication. As a result, a remote user can perform administrative tasks.
网管u家www.bitscn.net
When installed in a Sun Java System Application Server version 8.x container, a remote or local user can execute arbitrary code with the privileges of the target application.
Impact: A remote user can gain access to the target application. 网管有家www.bitscn.net
A remote user can execute arbitrary code on the target system.
Solution: No solution was available at the time of this entry. 网管有家bitscn.net
Sun has described a workaround in their advisory.
The Sun advisory is available at:
网管论坛bbs_bitsCN_com
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103069-1
Vendor URL: sunsolve.sun.com/search/document.do?assetkey=1-26-103069-1 (Links to External Site)
Cause: Access control error, State error
Underlying OS: Linux (Any), UNIX (HP/UX), UNIX (Solaris - SunOS), Windows (Any) 网管有家www.bitscn.net
Message History: None. 网管u家u.bitscn@com
|
0
|
评论加载中…