• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Sun Java System LDAP JDK Search Feature Information Disclosure Vulnerability

Sun Java System LDAP JDK is prone to an information-disclosure issue because it fails to restrict access to potentially sensitive information.

Attackers can exploit this issue to obtain information that may aid in further attacks.

The following applications are vulnerable:

Sun Java System LDAP JDK 4.19 and prior versions
Sun Java System Access Manager 7 2005Q4
Sun Java System Access Manager 7.1
Sun Java System Access Manager 6 2005Q1