1. Home
  2. CVE Database
  3. CVE-2009-1084
MEDIUM · 6.4

CVE-2009-1084

Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote attack...

Vulnerability Description

Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote attackers to have an unspecified impact by modifying this object.

CVSS Score

6.4

MEDIUM

AV:N/AC:L/Au:N/C:P/I:P/A:N
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
SunJava System Identity Manager7.0

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2009-1084?

CVE-2009-1084 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Sun Java System Identity Manager (IdM) 7.0 through 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote attack...

How severe is CVE-2009-1084?

CVE-2009-1084 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-1084?

Check the references section above for vendor advisories and patch information. Affected products include: Sun Java System Identity Manager.