Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Oracle iPlanet Web Server by Oracle Corporation

    JVNDB-2009-002069

    Vulnerability from jvndb - Published: 2011-07-25 18:06 - Updated:2011-07-25 18:06
    Severity
    N/A (UNKNOWN) - -
    Summary
    Oracle iPlanet Web Server information disclosure vulnerability
    Details
    Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability. Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
      "dc:date": "2011-07-25T18:06+09:00",
      "dcterms:issued": "2011-07-25T18:06+09:00",
      "dcterms:modified": "2011-07-25T18:06+09:00",
      "description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.",
      "link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
      "sec:cpe": {
        "#text": "cpe:/a:oracle:iplanet_web_server",
        "@product": "Oracle iPlanet Web Server",
        "@vendor": "Oracle Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "5.0",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2009-002069",
      "sec:references": [
        {
          "#text": "http://jvn.jp/en/jp/JVN47124169/index.html",
          "@id": "JVN#47124169",
          "@source": "JVN"
        },
        {
          "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2445",
          "@id": "CVE-2009-2445",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2445",
          "@id": "CVE-2009-2445",
          "@source": "NVD"
        },
        {
          "#text": "http://secunia.com/advisories/35701",
          "@id": "SA35701",
          "@source": "SECUNIA"
        },
        {
          "#text": "http://www.securityfocus.com/bid/35577",
          "@id": "35577",
          "@source": "BID"
        },
        {
          "#text": "http://securitytracker.com/id?1022511",
          "@id": "1022511",
          "@source": "SECTRACK"
        },
        {
          "#text": "http://www.osvdb.org/55655",
          "@id": "55655",
          "@source": "OSVDB"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-200",
          "@title": "Information Exposure(CWE-200)"
        }
      ],
      "title": "Oracle iPlanet Web Server information disclosure vulnerability"
    }

    JVNDB-2010-000042

    Vulnerability from jvndb - Published: 2010-10-18 19:37 - Updated:2010-10-18 19:37
    Severity
    N/A (UNKNOWN) - -
    Summary
    Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server
    Details
    Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability. Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability. Yoshihiro Ishikawa of LAC reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
      "dc:date": "2010-10-18T19:37+09:00",
      "dcterms:issued": "2010-10-18T19:37+09:00",
      "dcterms:modified": "2010-10-18T19:37+09:00",
      "description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability.\r\n\r\nYoshihiro Ishikawa of LAC reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
      "sec:cpe": {
        "#text": "cpe:/a:oracle:iplanet_web_server",
        "@product": "Oracle iPlanet Web Server",
        "@vendor": "Oracle Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "4.0",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:P",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2010-000042",
      "sec:references": [
        {
          "#text": "http://jvn.jp/en/jp/JVN50133036/index.html",
          "@id": "JVN#50133036",
          "@source": "JVN"
        },
        {
          "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3544",
          "@id": "CVE-2010-3544",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3544",
          "@id": "CVE-2010-3544",
          "@source": "NVD"
        },
        {
          "#text": "http://www.us-cert.gov/cas/techalerts/TA10-287A.html",
          "@id": "TA10-287A",
          "@source": "CERT-TA"
        },
        {
          "#text": "http://www.securityfocus.com/bid/43977",
          "@id": "43977",
          "@source": "BID"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-352",
          "@title": "Cross-Site Request Forgery(CWE-352)"
        }
      ],
      "title": "Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server"
    }