Unspecified Integrity Vulnerability in Oracle Application Server
CVE-2010-0070

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server
Vendor: CVE Published:; 13 January 2010

Summary

An unspecified vulnerability in the Oracle Containers for J2EE component of Oracle Application Server versions 10.1.2.3 and 10.1.3.4 potentially allows remote attackers to compromise the integrity of the system through unknown vectors, posing a risk to the security and reliability of applications relying on these versions.

References

http://www.securitytracker.com/id?1023438

vdb-entryx_refsource_SECTRACK

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.us-cert.gov/cas/techalerts/TA10-012A.html

third-party-advisoryx_refsource_CERT

Timeline

Vulnerability published
Jan 13, 2010
Vulnerability Reserved
Dec 16, 2009