Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4010

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-4010
Last Modified 22 Oct 2012 10:53:14
Published 14 Oct 2008 05:11:11
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4010

Summary

Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags."

Vulnerable Systems

Application

  • Oracle Bea Product Suite 10.0

  • Oracle Bea Product Suite 10.2

  • Oracle Bea Product Suite 10.3

  • Oracle Bea Product Suite 8.1

  • Oracle Bea Product Suite 9.2


References

CONFIRM - https://support.bea.com/application_content/product_portlets/securityadvisories/2803.html

XF - oracle-workshop-tags-unauth-access(45909)

VUPEN - ADV-2008-2825

SECTRACK - 1021056

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2008.html

SECUNIA - 32302

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html


Last Updated: 27 May 2016 11:01:05