ID CVE-2014-2472
Summary Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server (ttaauxserv), a different vulnerability than CVE-2014-2474, CVE-2014-2476, and CVE-2014-6459.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:virtualization:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:virtualization:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:virtualization:5.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:virtualization:5.1:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 19-11-2014 - 03:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
sectrack 1031034
Last major update 19-11-2014 - 03:00
Published 15-10-2014 - 15:55
Last modified 19-11-2014 - 03:00
Back to Top