Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2008-7234

Unspecified vulnerability in the Oracle BPEL Worklist Application component in Oracle Application Server 10.1.2.2 and 10.1.3.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, aka AS03.

Published

2009-09-14T14:30:00.547

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	oracle	application_server	10.1.2.2	Yes
Application	oracle	application_server	10.1.3.3	Yes

References

http://marc.info/?l=bugtraq&m=120058413923005&w=2 Issue Tracking, Mailing List, Patch, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=120058413923005&w=2 Issue Tracking, Mailing List, Patch, Third Party Advisory ([email protected])
http://secunia.com/advisories/28518 Third Party Advisory ([email protected])
http://secunia.com/advisories/28556 Third Party Advisory ([email protected])
http://securitytracker.com/id?1019218 Patch, Third Party Advisory, VDB Entry ([email protected])
http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html Broken Link ([email protected])
http://www.osvdb.org/40295 Broken Link ([email protected])
http://www.securityfocus.com/bid/27229 Exploit, Third Party Advisory, VDB Entry ([email protected])
http://www.us-cert.gov/cas/techalerts/TA08-017A.html Patch, Third Party Advisory, US Government Resource ([email protected])
http://www.vupen.com/english/advisories/2008/0150 Patch, Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2008/0180 Patch, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=120058413923005&w=2 Issue Tracking, Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=120058413923005&w=2 Issue Tracking, Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/28518 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/28556 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1019218 Patch, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/40295 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/27229 Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.us-cert.gov/cas/techalerts/TA08-017A.html Patch, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2008/0150 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2008/0180 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)