CVE-2007-5521
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
81.6%
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS06.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | application_server | 9.0.4.3 | cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:* |
| oracle | application_server | 10.1.2.0.2 | cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:* |
| oracle | application_server | 10.1.2.2 | cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:* |
| oracle | application_server | 10.1.3.3 | cpe:2.3:a:oracle:application_server:10.1.3.3:*:*:*:*:*:*:* |
| oracle | collaboration_suite | 10.1.2 | cpe:2.3:a:oracle:collaboration_suite:10.1.2:*:*:*:*:*:*:* |
References
marc.info/?l=bugtraq&m=119332677525918&w=2
secunia.com/advisories/27251
secunia.com/advisories/27409
www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
www.securitytracker.com/id?1018823
www.us-cert.gov/cas/techalerts/TA07-290A.html
www.vupen.com/english/advisories/2007/3524
www.vupen.com/english/advisories/2007/3626
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
81.6%