PT-2005-4781 · Sun · Sun Java System Messaging Server

Published

2005-12-07

Updated

2011-05-19

CVE-2005-4045

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sun Java System Messaging Server 2005Q1

Description The issue allows remote attackers to obtain the Top-Level Administrator (TLA) default password via unknown vectors, possibly involving configure toplevel admin.ldif.

Recommendations For Sun Java System Messaging Server 2005Q1, consider changing the default Top-Level Administrator (TLA) password to prevent unauthorized access. As a temporary workaround, restrict access to the configure toplevel admin.ldif file until a more permanent solution is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4045

Affected Products

Sun Java System Messaging Server

PT-2005-4781 · Sun · Sun Java System Messaging Server

CVE-2005-4045

Related Identifiers

Affected Products

References · 7