CVE-2012-3126

Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Products Suite 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Apache Tomcat Agent.

CVSS v2.0 6.2 MEDIUM

6.2^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 1.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/83943
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html	Vendor Advisory
http://www.securityfocus.com/bid/54505
http://www.securitytracker.com/id?1027274
https://exchange.xforce.ibmcloud.com/vulnerabilities/77059

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:sun_products_suite:3.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2012-07-17 23:55

Updated : 2017-08-29 01:31

NVD link : CVE-2012-3126

Mitre link : CVE-2012-3126

CVE.ORG link : CVE-2012-3126

JSON object : View

Products Affected

oracle

sun_products_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-3126", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-07-17T23:55:03.490", "references": [{"url": "http://osvdb.org/83943", "source": "secalert_us@oracle.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/54505", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id?1027274", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/77059", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Products Suite 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Apache Tomcat Agent."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente de Solaris Cluster en Oracle Sun Products Suite v3.3, permite a usuarios locales afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con Apache Tomcat Agent."}], "lastModified": "2017-08-29T01:31:48.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:sun_products_suite:3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A0ECE0F-4155-4F58-9F85-3D81BAE6DD87"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}