CVE-2008-1995

Name of the Vulnerable Software and Affected Versions Sun Java System Directory Proxy Server versions 6.0 through 6.2

Description The issue allows remote attackers to bypass intended access restrictions for the server due to an incorrect application of policy. This occurs because the server classifies a connection using the bind-dn criteria.

Recommendations For Sun Java System Directory Proxy Server versions 6.0 through 6.2, consider reconfiguring the connection classification criteria to prevent incorrect policy application. As a temporary workaround, restrict access to sensitive areas of the server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.