CVE-2011-3517

Unspecified vulnerability in the Oracle OpenSSO component in Oracle Sun Products Suite 8.0 allows remote attackers to affect availability via unknown vectors related to Authentication.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/76459
http://rhn.redhat.com/errata/RHSA-2012-1232.html
http://secunia.com/advisories/46527
http://secunia.com/advisories/50084
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html	Patch Vendor Advisory
http://www.securityfocus.com/bid/50208
https://exchange.xforce.ibmcloud.com/vulnerabilities/70793

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:sun_products_suite:8.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-10-18 22:55

Updated : 2017-08-29 01:30

NVD link : CVE-2011-3517

Mitre link : CVE-2011-3517

CVE.ORG link : CVE-2011-3517

JSON object : View

Products Affected

oracle

sun_products_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2011-3517", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-10-18T22:55:03.603", "references": [{"url": "http://osvdb.org/76459", "source": "secalert_us@oracle.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2012-1232.html", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/46527", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/50084", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/50208", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70793", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle OpenSSO component in Oracle Sun Products Suite 8.0 allows remote attackers to affect availability via unknown vectors related to Authentication."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en el componente de Oracle OpenSSO en Oracle Sun Products Suite v8.0 permite a atacantes remotos afectar a la disponibilidad a trav\u00e9s de vectores desconocidos relacionados con la autenticaci\u00f3n."}], "lastModified": "2017-08-29T01:30:13.520", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:sun_products_suite:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35BA375D-067F-4FFD-B12C-A19FF9E3EEA5"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}