certfr_avis - certa-2004-avi-090

CERTA-2004-AVI-090

Vulnerability from certfr_avis

Plusieurs vulnérabilités ont été découvertes dans Oracle Application Server Web Cache.

Description

Selon Oracle, plusieurs vulnérabilités sont présentes dans Oracle Application Server Web Cache. Il est fortement recommandé d'appliquer les correctifs afin d'empêcher l'exploitation de cette vulnérabilité.

Solution

Appliquer le correctif suivant la plateforme utilisée (cf. Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	N/A	Oracle9iAS Web Cache 9.0.2.3.0 ;
Oracle	N/A	Oracle9iAS Web Cache 9.0.3.1.0 ;
Oracle	N/A	Oracle Application Server Web Cache 10g (9.0.4.0.0) ;
Oracle	N/A	Oracle9iAS Web Cache 2.0.0.4.0.

References

Title

Publication Time

Tags

Alerte de sécurité #66 d'Oracle

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Oracle9iAS Web Cache 9.0.2.3.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle9iAS Web Cache 9.0.3.1.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Application Server Web Cache 10g (9.0.4.0.0) ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle9iAS Web Cache 2.0.0.4.0.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nSelon Oracle, plusieurs vuln\u00e9rabilit\u00e9s sont pr\u00e9sentes dans Oracle\nApplication Server Web Cache. Il est fortement recommand\u00e9 d\u0027appliquer\nles correctifs afin d\u0027emp\u00eacher l\u0027exploitation de cette vuln\u00e9rabilit\u00e9.\n\n## Solution\n\nAppliquer le correctif suivant la plateforme utilis\u00e9e (cf.\nDocumentation).\n",
  "cves": [],
  "initial_release_date": "2004-03-15T00:00:00",
  "last_revision_date": "2004-03-15T00:00:00",
  "links": [],
  "reference": "CERTA-2004-AVI-090",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2004-03-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle Application\nServer Web Cache.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Oracle Application Server Web Cache",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Alerte de s\u00e9curit\u00e9 #66 d\u0027Oracle",
      "url": "http://otn.oracle.com/deploy/security/pdf/2004alert66.pdf"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted