ID CVE-2009-1010
Summary Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1008.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:websphere_portal:6.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:6.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_portal:6.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:6.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:8.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:8.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:8.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:8.3.0:*:*:*:*:*:*:*
CVSS
Base: 4.4 (as of 22-11-2016 - 16:23)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:M/Au:N/C:P/I:P/A:P
refmap via4
bid 34461
cert TA09-105A
confirm
osvdb 53749
sectrack 1022055
secunia 34693
Last major update 22-11-2016 - 16:23
Published 15-04-2009 - 10:30
Last modified 22-11-2016 - 16:23
Back to Top