ID CVE-2007-1419
Summary The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by operating a server application accessed by a privileged remote authenticated user.
References
Vulnerable Configurations
  • Sun Java Dynamic Management Kit 5.1
    cpe:2.3:a:sun:java_dynamic_management_kit:5.1
CVSS
Base: 4.3 (as of 13-03-2007 - 16:31)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_119044.NASL
    description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11
    last seen 2017-10-29
    modified 2011-09-18
    plugin id 24860
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24860
    title Solaris 5.9 (x86) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_X86_119044.NASL
    description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11
    last seen 2017-10-29
    modified 2011-09-18
    plugin id 24855
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24855
    title Solaris 5.8 (x86) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_119044.NASL
    description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11
    last seen 2017-10-29
    modified 2011-09-18
    plugin id 24857
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24857
    title Solaris 5.9 (sparc) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119044.NASL
    description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11
    last seen 2018-09-01
    modified 2018-08-13
    plugin id 24844
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24844
    title Solaris 5.10 (sparc) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119044.NASL
    description SunOS 5.8 5.9 5.10 5.8_x86 5.9_x86 5.10_x86: JDMK 5.1 patch. Date this patch was last updated by Sun : Mar/15/11
    last seen 2018-09-01
    modified 2018-08-13
    plugin id 24848
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24848
    title Solaris 5.10 (x86) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_119044.NASL
    description JDMK 5.1: patch for Solaris 8 9 10 8_x86 9_x86 10_x86. Date this patch was last updated by Sun : Mar/15/11
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 24853
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24853
    title Solaris 8 (sparc) : 119044-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_124939.NASL
    description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. This plugin has been deprecated and either replaced with individual 124939 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 24846
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24846
    title Solaris 10 (sparc) : 124939-05 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_124939.NASL
    description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Cacao). Supported versions that are affected are 10 and 11.1. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SNMP. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. This plugin has been deprecated and either replaced with individual 124939 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 24850
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24850
    title Solaris 10 (x86) : 124939-05 (deprecated)
refmap via4
bid 22907
osvdb 34018
sectrack 1017745
secunia 24497
sunalert 102835
vupen ADV-2007-0906
Last major update 07-03-2011 - 21:52
Published 12-03-2007 - 19:19
Back to Top