PT-2010-4925 · Oracle+2 · Oracle Communications Messaging Server+2

Publicado

2010-10-13

Atualizado

2017-09-19

CVE-2010-3564

CVSS v2.0

6.4

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle Communications Messaging Server (Sun Java System Messaging Server) version 7.0

Description The issue affects confidentiality and integrity, and it is related to Webmail. Details about the vulnerability are not fully disclosed, but it may involve improper checking of AP-REQ requests in the Kerberos implementation, potentially leading to a denial of service in the JVM.

Recommendations For Oracle Communications Messaging Server (Sun Java System Messaging Server) version 7.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2010-3564

HPSBUX02608

RHSA-2010:0768

RHSA-2010:0865

RHSA-2010_0768

RHSA-2010_0865

Produtos afetados

Hp-Ux

Oracle Communications Messaging Server

Red Hat

PT-2010-4925 · Oracle+2 · Oracle Communications Messaging Server+2

CVE-2010-3564

Identificadores relacionados

Produtos afetados

Referências · 105