CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2705

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1470%
EPSS Percentile2.28th
PublishedJun 16, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in Sun Java System Access Manager (AM) 7.1, when used with certain versions and configurations of Sun Directory Server Enterprise Edition (DSEE), allows remote attackers to bypass authentication via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Sun

Java System Access Manager

= 7.1

References & Advisories

πŸ”— http://secunia.com/advisories/30652
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-26-238416-1
πŸ”— http://www.securityfocus.com/bid/29676
πŸ”— http://www.securitytracker.com/id?1020273
πŸ”— http://www.vupen.com/english/advisories/2008/1806
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/43004
πŸ”— http://secunia.com/advisories/30652
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-26-238416-1

Related Vulnerabilities

CVE-2020-247869.8

An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSe...

CVE-2016-15249.6

Multiple unrestricted file upload vulnerabilities in NETGEAR Management System NMS300 1.5.0.11 and earlier allow remote attackers ...

CVE-2009-01699.0

Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by cre...

CVE-2009-25977.8

The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a d...