CVE-2009-1005

Sažetak

Unspecified vulnerability in the Oracle Data Service Integrator (AquaLogic Data Services Platform) component in BEA Product Suite 10.3.0, 3.2, 3.0.1, and 3.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

Reference

http://osvdb.org/53760
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
http://www.oracle.com/technology/deploy/security/wls-security/1005.html
http://www.securityfocus.com/bid/34461
http://www.securitytracker.com/id?1022059
http://www.us-cert.gov/cas/techalerts/TA09-105A.html

CVSS

Base:	4.1
Impact:	6.4
Exploitability:	2.7

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

23-10-2012 - 03:04

Objavljeno

15-04-2009 - 10:30