Vulnerability Database

308,820

Total vulnerabilities in the database

CVE-2008-2705

Unspecified vulnerability in Sun Java System Access Manager (AM) 7.1, when used with certain versions and configurations of Sun Directory Server Enterprise Edition (DSEE), allows remote attackers to bypass authentication via unspecified vectors.

Published: Jun 16, 2008
Updated: Nov 9, 2025
CVE: CVE-2008-2705
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
sun / java_system_access_manager	7.1	7.1.x

http://secunia.com/advisories/30652
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238416-1
http://www.securityfocus.com/bid/29676
http://www.securitytracker.com/id?1020273
http://www.vupen.com/english/advisories/2008/1806
https://exchange.xforce.ibmcloud.com/vulnerabilities/43004

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo