CVE-2009-0348

Sun Java System Access Manager - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0348. PoCs published by Marco Mella.

AI-analyzed exploit summary This Perl script exploits a username enumeration vulnerability in Sun Java System Access Manager and Identity Manager by analyzing HTTP responses to determine valid usernames. It checks for specific error messages in the response content or title to infer user existence.

Description

The login module in Sun Java System Access Manager 6 2005Q1 (aka 6.3), 7 2005Q4 (aka 7.0), and 7.1 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marco Mella · perlremotemultiple

https://www.exploit-db.com/exploits/32762

View Code ZIP pw:eip

This Perl script exploits a username enumeration vulnerability in Sun Java System Access Manager and Identity Manager by analyzing HTTP responses to determine valid usernames. It checks for specific error messages in the response content or title to infer user existence.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Sun Java System Access Manager 6 2005Q1 (6.3), 7 2005Q4 (7.0), 7.1 and Sun Java System Identity Manager

No auth needed

Prerequisites: List of usernames to test · Network access to the target server

MITRE ATT&CK