[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

111666

 
 

909

 
 

87321

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote security vulnerability in Oracle Weblogic Server through HTTP - CVE-2017-10352

ID: oval:org.secpod.oval:def:43802Date: (C)2018-02-02   (M)2018-08-03
Class: VULNERABILITYFamily: windows




The host is installed with Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, 12.2.1.1, 12.2.1.2 or 12.2.1.3 and is prone to a remote security vulnerability. A flaw is present in the application, which fails to properly handle HTTP requests. Successful exploitation allows an attacker to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server as well as unauthorized update, insert or delete access to some of Oracle WebLogic Server accessible data and unauthorized read access to a subset of Oracle WebLogic Server accessible data.

Platform:
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Windows 10
Product:
Oracle Weblogic Server
Reference:
CVE-2017-10352
CVE    1
CVE-2017-10352
CPE    1
cpe:/a:oracle:weblogic_server::x86

© SecPod Technologies