Oval Definition:	oval:com.ubuntu.trusty:def:20154852000
Revision Date: 2015-11-18 Version: 1 Title: CVE-2015-4852 on Ubuntu 14.04 LTS (trusty) - low. Description: The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to oracle_common/modules/com.bea.core.apache.commons.collections.jar. NOTE: the scope of this CVE is limited to the WebLogic Server product. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-4852 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'libcommons-collections3-java' package in trusty is affected and needs fixing. OR The 'libcommons-collections4-java' package in trusty is affected and needs fixing. OR NOT While related to the CVE in some way, the 'libxalan2-java' package in trusty is not affected (note: 'code not present'). OR While related to the CVE in some way, a decision has been made to ignore it. OR While related to the CVE in some way, a decision has been made to ignore it.
BACK