Unspecified Vulnerability in Oracle Internet Directory of Oracle Application Server
CVE-2008-7237

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server
Vendor: CVE Published:; 14 September 2009

Summary

An unspecified vulnerability exists in the Oracle Internet Directory component of Oracle Application Server versions 9.0.4.3 and 10.1.2.2, allowing remote authenticated users to potentially compromise confidentiality through unknown vectors. Precautions should be taken to mitigate potential risks associated with this vulnerability.

References

http://securitytracker.com/id?1019218

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/27229

vdb-entryx_refsource_BID

http://www.us-cert.gov/cas/techalerts/TA08-017A.html

third-party-advisoryx_refsource_CERT

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 14, 2009
Vulnerability Reserved
Sep 14, 2009