Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 on Linux, AIX, Solaris, and HP-UX permits "control characters" in the passwords of user accounts, which allows remote malicious users to execute arbitrary commands via vectors involving "resource adapters."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java system identity manager 7.1.1 |
||
sun java system identity manager 7.0 |
||
sun java system identity manager 7.1 |
||
sun java system identity manager 8.0 |