CVE-2012-1710

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware version 10.1.3.5

Description The issue is related to insufficient protection of service data in the Designer subcomponent of the Oracle WebCenter Forms Recognition component. This can be exploited by a remote attacker to affect confidentiality, integrity, and availability. The exploitation can allow unauthorized access to read, modify, or add data, or cause a denial of service using the HTTP protocol.

Recommendations For Oracle Fusion Middleware version 10.1.3.5, consider restricting access to the Designer subcomponent until a patch is available. As a temporary workaround, limit the use of the Oracle WebCenter Forms Recognition component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.