Total vulnerabilities in the database
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables the debug flag, allows local users to discover cleartext passwords by reading debug files.
| Software | From | Fixed in |
|---|---|---|
| sun / java_system_access_manager | 6.3_2005q1 | 6.3_2005q1.x |
| sun / java_system_access_manager | 7.1 | 7.1.x |
| sun / java_system_access_manager | 7_2005q4 | 7_2005q4.x |
| sun / java_system_access_manager | 7.0_2005q4 | 7.0_2005q4.x |
| sun / java_system_web_server | 7.0 | 7.0.x |
| sun / opensso_enterprise | 8.0 | 8.0.x |