Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java system access manager 6.3_2005q1 |
||
sun java system access manager 7.1 |
||
sun java system access manager 7_2005q4 |
||
sun java system access manager 7.0_2005q4 |
||
sun java system web server 7.0 |
||
sun opensso enterprise 8.0 |