Remote Confidentiality Vulnerability in Oracle Application Server by Oracle
CVE-2010-0067

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server
Vendor: CVE Published:; 13 January 2010

What is CVE-2010-0067?

An unspecified vulnerability in the Oracle Containers for J2EE component of Oracle Application Server 10.1.2.3 and 10.1.3.4 allows remote attackers to potentially compromise the confidentiality of sensitive information via unknown vectors. This issue requires immediate attention to safeguard against unauthorized data access.

References

http://www.securitytracker.com/id?1023438

vdb-entryx_refsource_SECTRACK

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.us-cert.gov/cas/techalerts/TA10-012A.html

third-party-advisoryx_refsource_CERT

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 13, 2010
Vulnerability Reserved
Dec 16, 2009