CVE-2012-3155

2012-10-1623:55:03

oracle

web.nvd.nist.gov

cve-2012-3155

unspecified vulnerability

sun glassfish

oracle glassfish

sun java system application server

remote attackers

availability

corba orb

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.009

Percentile

82.8%

JSON

Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB.

Affected configurations

Nvd

Node

oracleglassfish_serverMatch2.1.1

oracleglassfish_serverMatch3.0.1

oracleglassfish_serverMatch3.1.2

sunjava_system_application_serverMatch8.1

sunjava_system_application_serverMatch8.2

VendorProductVersionCPE
oracleglassfish_server2.1.1cpe:2.3:a:oracle:glassfish_server:2.1.1:*:*:*:*:*:*:*
oracleglassfish_server3.0.1cpe:2.3:a:oracle:glassfish_server:3.0.1:*:*:*:*:*:*:*
oracleglassfish_server3.1.2cpe:2.3:a:oracle:glassfish_server:3.1.2:*:*:*:*:*:*:*
sunjava_system_application_server8.1cpe:2.3:a:sun:java_system_application_server:8.1:*:*:*:*:*:*:*
sunjava_system_application_server8.2cpe:2.3:a:sun:java_system_application_server:8.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	glassfish_server	2.1.1	cpe:2.3:a:oracle:glassfish_server:2.1.1:::::::*
oracle	glassfish_server	3.0.1	cpe:2.3:a:oracle:glassfish_server:3.0.1:::::::*
oracle	glassfish_server	3.1.2	cpe:2.3:a:oracle:glassfish_server:3.1.2:::::::*
sun	java_system_application_server	8.1	cpe:2.3:a:sun:java_system_application_server:8.1:::::::*
sun	java_system_application_server	8.2	cpe:2.3:a:sun:java_system_application_server:8.2:::::::*