Sun Java System Web Server Certificate Revocation Access Control Bypass Vulnerability

Bugtraq ID:	22973
Class:	Access Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 15 2007 12:00AM
Updated:	Mar 15 2007 05:04PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Sun Java System Web Server 6.1 SP6 Sun Java System Web Server 6.1 SP5 Sun Java System Web Server 6.1 SP4 Sun Java System Web Server 6.1 SP3 Sun Java System Web Server 6.1 SP2 Sun Java System Web Server 6.1 SP1 Sun Java System Web Server 6.1 Sun Java System Web Server 6.1
Not Vulnerable:	Sun Java System Web Server 6.1 SP7

Sun Java System Web Server Certificate Revocation Access Control Bypass Vulnerability

Sun Java System Web Server is prone to a vulnerability that lets attackers bypass access controls.

An attacker may leverage this issue to access a secure webserver using a revoked certificate. Such unauthorized access may help the attacker launch other attacks.

Sun Java System Web Server Certificate Revocation Access Control Bypass Vulnerability

An attacker can exploit this issue by using common client applications and a revoked certificate.

Sun Java System Web Server Certificate Revocation Access Control Bypass Vulnerability

Solution:
The vendor has released patches to address this issue. Please see the references for more information.


Sun Java System Web Server 6.1 SP6

• Sun Sun Java System Web Server 6.1 Service Pack 7
  http://www.sun.com/download/products.xml?id=45c90ca9

Sun Java System Web Server Certificate Revocation Access Control Bypass Vulnerability

References:

• Sun Java System Web Server (Sun Microsystems)
  
• Sun Java System Web Server May Allow A User with Revoked Client Certificate to A (Sun Microsystems)