Executive Summary
| Summary | |
|---|---|
| Title | Oracle Collaboration Suite denial of service vulnerability |
| Informations | |||
|---|---|---|---|
| Name | VU#322460 | First vendor Publication | 2007-07-19 |
| Vendor | VU-CERT | Last vendor Modification | 2007-07-19 |
| Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : | |||
|---|---|---|---|
| Cvss Base Score | N/A | Attack Range | N/A |
| Cvss Impact Score | N/A | Attack Complexity | N/A |
| Cvss Expoit Score | N/A | Authentication | N/A |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
Vulnerability Note VU#322460Oracle Collaboration Suite denial of service vulnerabilityOverviewThe Oracle collaboration suite contains a vulnerability that may allow an attacker to create a denial-of-service condition.I. DescriptionThe Oracle collaboration suite contains a vulnerability. From Oracle Critical Patch Update - July 2007:There is 1 new Oracle Collaboration Suite specific fix in this Critical Patch Update. It may be remotely exploitable without authentication, i.e. it may be exploited over a network without the need for a username and password. It is applicable to Oracle Collaboration Suite client-only installations. II. ImpactA remote, unauthenticated attacker may be able to create a denial-of-service condition.III. SolutionUpdateOracle has released an update to address this issue. Administrators are encouraged to review the information in the Oracle July Critical Patch Update.
References
Thanks to Oracle for information that was used in this report. This document was written by Ryan Giobbi.
|
Original Source
| Url : http://www.kb.cert.org/vuls/id/322460 |
