Lucene search

[email protected]CVE-2011-3506

HistoryOct 18, 2011 - 10:55 p.m.

CVE-2011-3506

2011-10-1822:55:03

[email protected]

web.nvd.nist.gov

cve-2011-3506

oracle

opensso

vulnerability

integrity

authentication

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.5%

JSON

Unspecified vulnerability in the Oracle OpenSSO component in Oracle Sun Products Suite 7.1 and 8.0 allows remote attackers to affect integrity via unknown vectors related to Authentication.

Affected configurations

NVD

Node

oraclesun_products_suiteMatch7.1

oraclesun_products_suiteMatch8.0

CPENameOperatorVersion
oracle:sun_products_suiteoracle sun products suiteeq7.1
oracle:sun_products_suiteoracle sun products suiteeq8.0

CPE	Name	Operator	Version
oracle:sun_products_suite	oracle sun products suite	eq	7.1
oracle:sun_products_suite	oracle sun products suite	eq	8.0

References

rhn.redhat.com/errata/RHSA-2012-1232.html

secunia.com/advisories/46527

secunia.com/advisories/46528

secunia.com/advisories/50084

www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.5%

JSON

Related for CVE-2011-3506

cvelist1 nvd1 prion1 nessus2 oracle1 securityvulns1