Vulnerability Name:

CVE-2010-0081 (CCN-60311)

Assigned:2009-12-16
Published:2010-07-13
Updated:2016-11-23
Summary:Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2010-2381.
CVSS v3 Severity:2.6 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:3.5 Low (CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N)
2.6 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
3.5 Low (CCN CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N)
2.6 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-noinfo
References:Source: MITRE
Type: CNA
CVE-2010-0081

Source: CCN
Type: SA40597
Oracle Fusion Middleware Products Multiple Vulnerabilities

Source: CCN
Type: Oracle Critical Patch Update Advisory - July 2010
Oracle Critical Patch Update Advisory - July 2010

Source: CONFIRM
Type: Vendor Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Source: CCN
Type: OSVDB ID: 66326
Oracle Fusion Middleware Application Server Control Unspecified Remote Issue (2010-0081)

Source: CCN
Type: BID-41609
Oracle Fusion Middleware CVE-2010-0081 Remote Application Server Control Vulnerability

Source: XF
Type: UNKNOWN
ofm-appservctl-unspecified(60311)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:oracle:fusion_middleware:10.1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:fusion_middleware:10.1.4.0.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:oracle:application_server:10.1.4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:application_server:10.1.2.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    oracle fusion middleware 10.1.2.3
    oracle fusion middleware 10.1.4.0.1
    oracle application server 10.1.4.0.1
    oracle application server 10.1.2.3