Oracle GlassFish/Java System Application Server CORBA ORB Subcomponent DoS Vulnerability Network Vulnerability

Summary

This host is running Oracle GlassFish/Java System Application Server and is prone to denial of service vulnerability.

Impact

Successful exploitation could allow malicious attackers to cause a denial of service. Impact Level: Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html ***** NOTE: Ignore this warning, if above mentioned patch is manually applied. *****

Insight

The flaw is caused due to an unspecified error within the CORBA ORB subcomponent, which allows remote users to cause a denial of service condition.

Affected

Oracle GlassFish version 2.1.1, 3.0.1 and 3.1.2 Oracle Java System Application Server version 8.1 and 8.2

References

http://osvdb.org/show/osvdb/86388
http://secunia.com/advisories/51017/
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-3155

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

DB2 discovery service DOS
Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)
Asterisk T.38 Negotiation Remote Denial Of Service Vulnerability
AVG Anti-Virus UPX Processing Denial of Service Vulnerability
Avahi Denial of Service Vulnerability

Take action and discover your vulnerabilities