Access Management Vulnerability in Oracle Application Server
CVE-2010-0066

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server
Vendor: CVE Published:; 13 January 2010

Summary

An unspecified vulnerability exists in the Access Manager Identity Server component of Oracle Application Server, which may allow remote attackers to influence the integrity of the system through unknown vectors. This flaw affects multiple versions of the software, potentially compromising the security of applications relying on the affected server instances. Administrators should ensure they are running the most recent patches and monitor systems for any unusual activity.

References

http://www.securitytracker.com/id?1023438

vdb-entryx_refsource_SECTRACK

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.us-cert.gov/cas/techalerts/TA10-012A.html

third-party-advisoryx_refsource_CERT

Timeline

Vulnerability published
Jan 13, 2010
Vulnerability Reserved
Dec 16, 2009