CVE-2010-0311

6 documents5 sources

Severity

6.8MEDIUM

EPSS

1.3%

top 19.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java System Identity Server

Timeline

PublishedJan 14

Latest updateMay 2

Description

Unspecified vulnerability in Sun Java System Identity Manager (aka IdM) 8.1.0.5 and 8.1.0.6, when Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager is used, allows remote attackers to obtain administrative access via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

▶NVDsun/java_system_identity_server8.1.0.5, 8.1.0.6+1

Patches

Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-j7hw-9rwh-r263: Unspecified vulnerability in Sun Java System Identity Manager (aka IdM) 8↗2022-05-02

▶

CVEList

CVE-2010-0311: Unspecified vulnerability in Sun Java System Identity Manager (aka IdM) 8↗2010-01-14

▶

💥Exploits & PoCs

Exploit-DB

HP OpenView OmniBack II - Command Execution (Metasploit)↗2010-09-20

▶

Exploit-DB

Borland CaliberRM - StarTeam Multicast Service Buffer Overflow (Metasploit)↗2010-06-15

▶

💬Community

Bugzilla

CVE-2010-1585 Mozilla ParanoidFragmentSink allows javascript: URLs in chrome documents (MFSA 2011-08)↗2011-02-04

▶