CVE-2008-3235

Unspecified vulnerability in the PropFilePasswordEncoder utility in the Security component in IBM WebSphere Application Server WAS 5.1 before 5.1.1.19 has unknown impact and attack vectors...

Information disclosure

Unspecified vulnerability in Wsadmin in the System Management/Repository component in IBM WebSphere Application Server WAS 5.1 before 5.1.1.19 allows attackers to obtain sensitive information via vectors related to "previously encrypted properties" that are not encrypted...

CVE-2008-3236

Unspecified vulnerability in Wsadmin in the System Management/Repository component in IBM WebSphere Application Server WAS 5.1 before 5.1.1.19 allows attackers to obtain sensitive information via vectors related to "previously encrypted properties" that are not encrypted...

CVE-2008-3235

Unspecified vulnerability in the PropFilePasswordEncoder utility in the Security component in IBM WebSphere Application Server WAS 5.1 before 5.1.1.19 has unknown impact and attack vectors...

CVE-2008-3236

Unspecified vulnerability in Wsadmin in the System Management/Repository component in IBM WebSphere Application Server WAS 5.1 before 5.1.1.19 allows attackers to obtain sensitive information via vectors related to "previously encrypted properties" that are not encrypted...

CVE-2008-3235

The CVE-2008-3235 entry concerns an unspecified vulnerability in the PropFilePasswordEncoder utility of the Security component in IBM WebSphere Application Server (WAS) 5.1 prior to 5.1.1.19. The impact and attack vectors are unknown per the description. Connected records reiterate the same issue...

CVE-2008-3236

The vulnerability CVE-2008-3236 affects IBM WebSphere Application Server (WAS) 5.1 and earlier, in the Wsadmin within the System Management/Repository component. The root cause is that previously encrypted properties were not actually encrypted, enabling an attacker to obtain sensitive informatio...

IBM WebSphere应用服务程序存在未明漏洞

BUGTRAQ ID: CNCAN ID：CNCAN-2008072105 IBM WebSphere Application Server是一款商业性质的WEB应用服务程序。 IBM WebSphere应用服务程序"PropFilePasswordEncoder"工具存在未明错误。 目前没有详细漏洞细节提供。 IBM WebSphere Application Server 5.x 可采用Fix Pack 19 5.1.1.19： http://www-1.ibm.com/support/docview.wss?uid=swg27006879...

Oracle Critical Patch Update Advisory - July 2008

Oracle Critical Patch Update Advisory - July 2008 Description A Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required because of interdependencies by those security patches. Critical Patch Updates are...

Information disclosure

Unspecified vulnerability in the Hyperion BI Plus component in Oracle Application Server 8.3.2.4, 8.5.0.3, 9.2.0.3, 9.2.1.0, and 9.3.1.0 has unknown impact and remote attack vectors...

CVE-2008-2612

Unspecified vulnerability in the Hyperion BI Plus component in Oracle Application Server 8.3.2.4, 8.5.0.3, 9.2.0.3, 9.2.1.0, and 9.3.1.0 has unknown impact and remote attack vectors...

Design/Logic Flaw

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.3.3 has unknown impact and remote attack vectors...

CVE-2008-2593

Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-2594...

Design/Logic Flaw

Unspecified vulnerability in the sample Discussion Forum Portlet for the Oracle Portal component in Oracle Application Server, as available from OTN before 20080715, has unknown impact and remote attack vectors...

Code injection

Unspecified vulnerability in the Mobile Application Server component in Oracle E-Business Suite 12.0.3 has unknown impact and remote authenticated attack vectors...

CVE-2008-2609

Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors...

CVE-2008-2594

CVE-2008-2594 is an Oracle Portal vulnerability in Oracle Application Server 10g (10.1.2.3 and 10.1.4.2). The Oracle Application Server risk matrix lists CVE-2008-2594 as affecting Oracle Portal over HTTP with network-vector exploitation and no authentication required, scoring 6.4 (CVSS v2) and i...

CVE-2008-2609

Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors...

CVE-2008-2612

CVE-2008-2612 affects the Hyperion BI Plus component in Oracle Application Server (versions 8.3.2.4, 8.5.0.3, 9.2.0.3, 9.2.1.0, 9.3.1.0). The Oracle CPU July 2008 risk matrix marks this as a remote vulnerability exploitable via HTTP with network access and no authentication, with a base CVSS v2 s...