1. CVE-Search
  2. CVE-2013-1509
ID CVE-2013-1509
Summary Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:fusion_middleware:7.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:7.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.1:*:*:*:*:*:*:*
CVSS
Base: 4.0 (as of 01-12-2013 - 04:27)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:S/C:N/I:P/A:N
refmap via4
bugtraq 20130417 SEC Consult SA-20130417-2 :: HTTP header injection/Cache poisoning in Oracle WebCenter Sites Satellite Server
confirm http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
mandriva MDVSA-2013:150
Last major update 01-12-2013 - 04:27
Published 17-04-2013 - 12:14
Last modified 01-12-2013 - 04:27
Back to Top