int(2034)

Vulnerability Bulletins

Acceso a la contraseña por defecto de TLA en Sun Java System Communications Services

Vulnerability classification
Property Value
Confidence level Oficial
Impact Aumento de la visibilidad
Dificulty Experto
Required attacker level Acceso remoto sin cuenta a un servicio exotico

System information
Property Value
Affected manufacturer Comercial Software
Affected software Sun Java System Communications Services 6 Delegated Administrator 2005Q1

Description
Se ha descubierto una vulnerabilidad en Sun Communications Services 6 Delegated Administrator 2005Q1.

Un atacante remoto podría acceder a la contraseña por defecto del "Top-Level Administrator" (TLA).

Solution


Actualización de software

Sun
Sun Java System Communications Services 6 Delegated Administrator 2005Q1 / SPARC / Solaris 8, 9, 10 / patch 119777-09
Sun Java System Communications Services 6 Delegated Administrator 2005Q1 / x86 / Solaris 8, 9, 10 / patch 119778-09
Sun Java System Communications Services 6 Delegated Administrator 2005Q1 / Linux / RHEL2.1, RHEL3.0 / patch 119779-09
http://sunsolve.sun.com/pub-cgi/show.pl?target=patchpage

Standar resources
Property Value
CVE
BID

Other resources
Sun Alert Notification (102068)
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102068-1

Version history
Version Comments Date
1.0 Aviso emitido 2005-12-07
Ministerio de Defensa
CNI
CCN
CCN-CERT