CVE-2012-1754

CVE-2012-1754 affects Oracle Siebel CRM 8.1.1 and 8.2.2, specifically the UI Framework subcomponent. According to the Oracle Siebel/July 2012 CPU context and Nessus details, it enables an authenticated, HTTP-based attack that can disclose data (unauthorized read access) and is part of a set of UI...

CVE-2012-1742

Oracle Siebel CRM 8.1.1 and 8.2.2 are affected by CVE-2012-1742 in the UI Framework. The Nessus entry notes an easily exploitable, unauthenticated network path via HTTP that can cause a partial denial of service of Siebel CRM. Publicly available details in the provided documents are limited to th...

CVE-2007-2385

The Yahoo! UI framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using other...

CVE-2007-2385

The Yahoo! UI framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using other...