Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0390

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2015-0390
Last Modified 14 Apr 2015 10:02:42
Published 21 Jan 2015 01:59:34
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0390

Summary

Unspecified vulnerability in the MICROS Retail component in Oracle Retail Applications Xstore: 3.2.1, 3.4.2, 3.5.0, 4.0.1, 4.5.1, 4.8.0, 5.0.3, 5.5.3, 6.0.6, and 6.5.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Xstore Point of Sale.

Vulnerable Systems

Application

  • Oracle Retail Applications Xstore 3.2.1

  • Oracle Retail Applications Xstore 3.4.2

  • Oracle Retail Applications Xstore 3.5.0

  • Oracle Retail Applications Xstore 4.0.1

  • Oracle Retail Applications Xstore 4.5.1

  • Oracle Retail Applications Xstore 4.8.0

  • Oracle Retail Applications Xstore 5.0.3

  • Oracle Retail Applications Xstore 5.5.3

  • Oracle Retail Applications Xstore 6.0.6

  • Oracle Retail Applications Xstore 6.5.2


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

XF - oracle-cpujan2015-cve20150390(100138)

SECTRACK - 1031591

BID - 72247

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html


Last Updated: 27 May 2016 11:07:36