Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4014

Overview

Vulnerability Score 5.5 5.5
CVE Id CVE-2008-4014
Last Modified 22 Oct 2012 10:53:15
Published 13 Jan 2009 09:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-4014

Summary

Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

Vulnerable Systems

Application

  • Oracle Application Server 1.0

  • Oracle Application Server 1.0.2

  • Oracle Application Server 1.0.2.0

  • Oracle Application Server 1.0.2.1

  • Oracle Application Server 1.0.2.1s

  • Oracle Application Server 1.0.2.2

  • Oracle Application Server 1.0.2.2.2

  • Oracle Application Server 10.1.0.2

  • Oracle Application Server 10.1.0.3

  • Oracle Application Server 10.1.0.3.1

  • Oracle Application Server 10.1.0.4

  • Oracle Application Server 10.1.2

  • Oracle Application Server 10.1.2 .0.1

  • Oracle Application Server 10.1.2.0

  • Oracle Application Server 10.1.2.0.0

  • Oracle Application Server 10.1.2.0.1

  • Oracle Application Server 10.1.2.0.2

  • Oracle Application Server 10.1.2.1

  • Oracle Application Server 10.1.2.1.0

  • Oracle Application Server 10.1.2.2

  • Oracle Application Server 10.1.2.2.0

  • Oracle Application Server 10.1.2.3

  • Oracle Application Server 10.1.3

  • Oracle Application Server 10.1.3.0

  • Oracle Application Server 10.1.3.0.0

  • Oracle Application Server 10.1.3.1

  • Oracle Application Server 10.1.3.1.0

  • Oracle Application Server 10.1.3.2.0

  • Oracle Application Server 10.1.3.3

  • Oracle Application Server 10.1.3.3.0

  • Oracle Application Server 10.1.4.0

  • Oracle Application Server 10.1.4.0.1

  • Oracle Application Server 10.1.4.1

  • Oracle Application Server 10.1.4.1.0

  • Oracle Application Server 10.2.0.0

  • Oracle Application Server 11i

  • Oracle Application Server 3.0.7

  • Oracle Application Server 4.0

  • Oracle Application Server 4.0.8

  • Oracle Application Server 4.0.8.2

  • Oracle Application Server 6.0.8.26 Ps17

  • Oracle Application Server 7.0.4.4

  • Oracle Application Server 8.1.7

  • Oracle Application Server 9.0

  • Oracle Application Server 9.0.2

  • Oracle Application Server 9.0.2.0.0

  • Oracle Application Server 9.0.2.0.1

  • Oracle Application Server 9.0.2.1

  • Oracle Application Server 9.0.2.2

  • Oracle Application Server 9.0.2.3

  • Oracle Application Server 9.0.3

  • Oracle Application Server 9.0.3.1

  • Oracle Application Server 9.0.4

  • Oracle Application Server 9.0.4.0

  • Oracle Application Server 9.0.4.1

  • Oracle Application Server 9.0.4.2

  • Oracle Application Server 9.0.4.3

  • Oracle Application Server 9.2.0.6

  • Oracle Application Server 9.2.0.7


References

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html

VUPEN - ADV-2009-0115

SECTRACK - 1021572

BID - 33177

SECUNIA - 33525

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html


Last Updated: 27 May 2016 11:01:06