ID CVE-2007-5523
Summary Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS08.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:collaboration_suite:10.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:collaboration_suite:10.1.2:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 23-10-2012 - 02:36)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
cert TA07-290A
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
hp
  • HPSBMA02133
  • SSRT061201
sectrack 1018823
secunia
  • 27251
  • 27409
vupen
  • ADV-2007-3524
  • ADV-2007-3626
Last major update 23-10-2012 - 02:36
Published 17-10-2007 - 23:17
Last modified 23-10-2012 - 02:36
Back to Top