CVE-2013-1503

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote authenticated users to affect integrity via unknown vectors related to Content Server...

CVE-2013-1509

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites...

CVE-2012-4303

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 11.1.1.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Content Server...

CVE-2013-1504

Technical details about CVE-2013-1504 are not publicly available in the provided documents. Monitor for updates from official advisories and vendors.

CVE-2013-1508

Removed by vendor...

CVE-2013-1497

Unspecified vulnerability in the Oracle COREid Access component in Oracle Fusion Middleware 10.1.4.3.0 allows remote attackers to affect integrity via unknown vectors related to WebGate - WebServer plugin...

CVE-2013-1497

CVE-2013-1497 affects Oracle Fusion Middleware 10.1.4.3.0’s Oracle COREid Access component, specifically the WebGate-WebServer plugin, with remote integrity impact via unspecified vectors. The NVD entry cites a network-access vulnerability (CVSS v2 base 4.3, MEDIUM) but does not detail exploit ve...

Oracle Releases April 2013 Security Advisory

Oracle has released its Critical Patch Update for April 2013 to address 128 vulnerabilities across multiple products. This update contains the following security fixes: 4 for Oracle Database Server 29 for Oracle Fusion Middleware 6 for Oracle E-Business Suite 3 for Oracle Supply Chain Products...

CVE-2012-1016

The pkinitserverreturnpadata function in plugins/preauth/pkinit/pkinitsrv.c in the PKINIT implementation in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.10.4 attempts to find an agility KDF identifier in inappropriate circumstances, which allows remote attackers to cause a...

JBoss Enterprise Application Platform SecurityAssociation.getCredential() 安全绕过漏洞

BUGTRAQ ID: 57550 CVECAN ID: CVE-2012-3370 JBoss企业应用平台（JBoss Enterprise Application Platform，EAP）是J2EE应用的中间件平台。 JBoss Enterprise Application Platform，如果没有提供安全上下文给SecurityAssociation.getCredential，则其会返回之前的凭证。根据配置的应用，可允许远程攻击者劫持之前经过身份验证的用户凭证。 0 JBoss Group JBoss Enterprise Web Platform for RHEL 5...

Debian Security Advisory DSA 2605-2 (asterisk - several issues)

Several vulnerabilities were discovered in Asterisk, a PBX and telephony toolkit, that allow remote attackers to perform denial of service attacks. OpenVAS Vulnerability Test $Id: deb2605.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2605-2 using nvtgen 1.0 Script...

CVE-2013-0418

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous informati...

CVE-2013-0393

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0418...

CVE-2012-1677

Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via unknown vectors...

Buffer overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0418...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3.0, 11.1.1.5.0, and 11.1.2.0.0 allows remote attackers to affect integrity, related to OAM Webgate...

Heap overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous informati...

CVE-2013-0418

Oracle Outside In Technology in Oracle Fusion Middleware 8.3.7 and 8.4 contains a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) when processing the table header's field count, which can be triggered remotely to potentially execute arbitrary code. The vulnerability i...

CVE-2012-1677

Technical details about CVE-2012-1677 are not publicly available in the provided documents. Monitor for updates from Oracle and CVE repositories for affected products, versions, and remediation.