Vulnerabilites related to Oracle Corporation - Oracle iPlanet Web Server
jvndb-2010-000042
Vulnerability from jvndb
Published
2010-10-18 19:37
Modified
2010-10-18 19:37
Severity ?
() - -
Summary
Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server
Details
Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability. Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability. Yoshihiro Ishikawa of LAC reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
Show details on JVN DB website

To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
  "dc:date": "2010-10-18T19:37+09:00",
  "dcterms:issued": "2010-10-18T19:37+09:00",
  "dcterms:modified": "2010-10-18T19:37+09:00",
  "description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability.\r\n\r\nYoshihiro Ishikawa of LAC reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
  "sec:cpe": {
    "#text": "cpe:/a:oracle:iplanet_web_server",
    "@product": "Oracle iPlanet Web Server",
    "@vendor": "Oracle Corporation",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "4.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:P",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2010-000042",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN50133036/index.html",
      "@id": "JVN#50133036",
      "@source": "JVN"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3544",
      "@id": "CVE-2010-3544",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3544",
      "@id": "CVE-2010-3544",
      "@source": "NVD"
    },
    {
      "#text": "http://www.us-cert.gov/cas/techalerts/TA10-287A.html",
      "@id": "TA10-287A",
      "@source": "CERT-TA"
    },
    {
      "#text": "http://www.securityfocus.com/bid/43977",
      "@id": "43977",
      "@source": "BID"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-352",
      "@title": "Cross-Site Request Forgery(CWE-352)"
    }
  ],
  "title": "Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server"
}

jvndb-2009-002069
Vulnerability from jvndb
Published
2011-07-25 18:06
Modified
2011-07-25 18:06
Severity ?
() - -
Summary
Oracle iPlanet Web Server information disclosure vulnerability
Details
Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability. Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.
References
Impacted products
Show details on JVN DB website

To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
  "dc:date": "2011-07-25T18:06+09:00",
  "dcterms:issued": "2011-07-25T18:06+09:00",
  "dcterms:modified": "2011-07-25T18:06+09:00",
  "description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.",
  "link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
  "sec:cpe": {
    "#text": "cpe:/a:oracle:iplanet_web_server",
    "@product": "Oracle iPlanet Web Server",
    "@vendor": "Oracle Corporation",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "5.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2009-002069",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN47124169/index.html",
      "@id": "JVN#47124169",
      "@source": "JVN"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2445",
      "@id": "CVE-2009-2445",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2445",
      "@id": "CVE-2009-2445",
      "@source": "NVD"
    },
    {
      "#text": "http://secunia.com/advisories/35701",
      "@id": "SA35701",
      "@source": "SECUNIA"
    },
    {
      "#text": "http://www.securityfocus.com/bid/35577",
      "@id": "35577",
      "@source": "BID"
    },
    {
      "#text": "http://securitytracker.com/id?1022511",
      "@id": "1022511",
      "@source": "SECTRACK"
    },
    {
      "#text": "http://www.osvdb.org/55655",
      "@id": "55655",
      "@source": "OSVDB"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-200",
      "@title": "Information Exposure(CWE-200)"
    }
  ],
  "title": "Oracle iPlanet Web Server information disclosure vulnerability"
}