Oracle Siebel CRM (July 2014 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2014 CPU advisory. - Vulnerability in the Siebel Travel & Transportation component of Oracle Siebel CRM subcomponent: Diary. Supported versions that are affected are...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Tivoli Storage Productivity Center July 2014 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped with Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates in July 2014. Vulnerability Details The following advisories are included in the IBM® SDK Java™...

Security Bulletin: Multiple vulnerabilities in the IBM SDK Java™ Technology for IBM i

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition for IBM i. These issues were disclosed as part of the IBM Java SDK updates in July 2014. Vulnerability Details CVEID: CVE-2014-3086 DESCRIPTION: A vulnerability in the IBM implementation of the Java Virtual Machine ma...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Support Assistant Team Server July 2014 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped with IBM Support Assistant Team Server. These issues were disclosed as part of the IBM Java SDK updates in July 2014. Vulnerability Details The following two advisories are included in the IBM® SDK Jav...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server July 2014 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed as part of the IBM Java SDK updates in July 2014. Vulnerability Details The following three advisories are included in the IBM® SDK...

Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition

Summary Java SE issues disclosed in the Oracle July 2014 Critical Patch Update, plus 2 additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-3086 CVE-2014-4227 CVE-2014-4262 CVE-2014-4219 CVE-2014-4209 CVE-2014-4220 CVE-2014-4268 CVE-2014-4218 CVE-2014-4252 CVE-2014-4266 CVE-2014-426...

U.S. Dept Of Defense: WebLogic Server Side Request Forgery

Universal Description Discovery and Integration UDDI application is publicly available on this WebLogic server. The SearchPublicRegistries.jsp page can be abused by unauthenticated attackers to cause the WebLogic web server to connect to an arbitrary TCP port of an arbitrary host. Responses...

mysql: unspecified vulnerability related to SROPTZR (CPU July 2014)

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR...

mysql: unspecified vulnerability related to SROPTZR (CPU July 2014)

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR...

Oracle WebCenter Portal Unspecified Remote Information Disclosure (July 2014 CPU)

Binary data oraclewebcenterportalcve20144211.nbin...

Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition

IBM SECURITY ADVISORY First Issued: Mon Aug 18 14:04:26 CDT 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajul2014advisory.asc https://aix.software.ibm.com/aix/efixes/security/javajul2014advisory.asc...

search.goodbaby.com XSS vulnerability

Vulnerable URL: http://search.goodbaby.com/?ch=phpcms=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No Check search.goodbaby.com SSL connection...

Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (July 2014 CPU)

The version of Oracle HTTP Server installed on the remote host is affected by multiple vulnerabilities in relation to the Oracle WebLogic plugins. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid76618;...

OpenJDK: Restrict use of privileged annotations (Libraries, 8034985)

Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is...

Oracle E-Business (July 2014 CPU)

The version of Oracle E-Business installed on the remote host is missing the July 2014 Critical Patch Update CPU. It is, therefore, affected by vulnerabilities in the following components : - Oracle Applications Technology Stack - Oracle Concurrent Processing - Oracle Applications Manager - Oracl...

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2014 CPU)

The remote host has a version of Oracle Secure Global Desktop that is version 4.63, 4.71, 5.0 or 5.1. It is, therefore, affected by the following vulnerabilities : - Apache Tomcat does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrec...

Oracle Siebel Multiple Vulnerabilities (July 2014 CPU)

The remote Oracle Siebel install is affected by multiple unspecified vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid76576; scriptversion"1.5"; scriptsetattributeattribute:"pluginmodificationdate",...

CVE-2014-5112

creationtimestamp| type| source ---|---|--- 2014-07-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39352...

CVE-2014-2483

Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is...

Oracle Java SE Multiple Vulnerabilities (July 2014 CPU) (Unix)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 8 Update 11, 7 Update 65, 6 Update 81, or 5 Update 71. It is, therefore, affected by security issues in the following components : - Deployment - Hotspot - JavaFX - JMX - Libraries - Security ...