CVE-2009-2712
published 2009-08-07CVE-2009-2712: Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users…
low2.1CVSS 3.1
AVLACLAuNCPINAN
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sun | java_system_access_manager | — | — |
| sun | java_system_access_manager | — | — |
| sun | java_system_access_manager | — | — |
| sun | java_system_access_manager | — | — |
| sun | java_system_web_server | — | — |
| sun | opensso_enterprise | — | — |