Oracle Sun Management Center Information Disclosure Vulnerability Network Vulnerability

Summary

The host is installed with Oracle Sun Management Center and is prone to information disclosure vulnerability.

Impact

Successful exploitation could allow remote attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The issue is caused by an unknown error within the Web Console component, which could allow attackers to disclose certain information.

Affected

Oracle SunMC version 4.0

References

http://secunia.com/advisories/42989
http://www.vupen.com/english/advisories/2011/0156
http://xforce.iss.net/xforce/xfdb/64814

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4436

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Tomcat XML External Entity Information Disclosure Vulnerability
Avant Browser Address Bar Spoofing Vulnerability
Apache Error Log Escape Sequence Injection
Apple Safari Webkit Multiple Vulnerabilities - June13 (Mac OS X)
Apache /server-status accessible

Take action and discover your vulnerabilities