Search criteria
2 vulnerabilities found for Oracle iPlanet Web Server by Oracle Corporation
JVNDB-2009-002069
Vulnerability from jvndb - Published: 2011-07-25 18:06 - Updated:2011-07-25 18:06Summary
Oracle iPlanet Web Server information disclosure vulnerability
Details
Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability.
Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
"dc:date": "2011-07-25T18:06+09:00",
"dcterms:issued": "2011-07-25T18:06+09:00",
"dcterms:modified": "2011-07-25T18:06+09:00",
"description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains an information disclosure vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains an information disclosure vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002069.html",
"sec:cpe": {
"#text": "cpe:/a:oracle:iplanet_web_server",
"@product": "Oracle iPlanet Web Server",
"@vendor": "Oracle Corporation",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-002069",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN47124169/index.html",
"@id": "JVN#47124169",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2445",
"@id": "CVE-2009-2445",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2445",
"@id": "CVE-2009-2445",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/35701",
"@id": "SA35701",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/35577",
"@id": "35577",
"@source": "BID"
},
{
"#text": "http://securitytracker.com/id?1022511",
"@id": "1022511",
"@source": "SECTRACK"
},
{
"#text": "http://www.osvdb.org/55655",
"@id": "55655",
"@source": "OSVDB"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-200",
"@title": "Information Exposure(CWE-200)"
}
],
"title": "Oracle iPlanet Web Server information disclosure vulnerability"
}
JVNDB-2010-000042
Vulnerability from jvndb - Published: 2010-10-18 19:37 - Updated:2010-10-18 19:37Summary
Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server
Details
Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability.
Oracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability.
Yoshihiro Ishikawa of LAC reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
"dc:date": "2010-10-18T19:37+09:00",
"dcterms:issued": "2010-10-18T19:37+09:00",
"dcterms:modified": "2010-10-18T19:37+09:00",
"description": "Oracle iPlanet Web Server (formerly Sun Java System Web Server) contains a cross-site request forgery vulnerability.\r\n\r\nOracle iPlanet Web Server (formerly Sun Java System Web Server) is a web server. Oracle iPlanet Web Server contains a cross-site request forgery vulnerability.\r\n\r\nYoshihiro Ishikawa of LAC reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000042.html",
"sec:cpe": {
"#text": "cpe:/a:oracle:iplanet_web_server",
"@product": "Oracle iPlanet Web Server",
"@vendor": "Oracle Corporation",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-000042",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN50133036/index.html",
"@id": "JVN#50133036",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3544",
"@id": "CVE-2010-3544",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3544",
"@id": "CVE-2010-3544",
"@source": "NVD"
},
{
"#text": "http://www.us-cert.gov/cas/techalerts/TA10-287A.html",
"@id": "TA10-287A",
"@source": "CERT-TA"
},
{
"#text": "http://www.securityfocus.com/bid/43977",
"@id": "43977",
"@source": "BID"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
}
],
"title": "Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server"
}