Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle http server 12.1.2.0 vulnerabilities and exploits

(subscribe to this query)

2.6
CVSSv2
CVE-2016-0671
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to OSSL Module....
Oracle Http Server 12.1.2.0
5
CVSSv2
CVE-2013-6438
The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service (daemon crash) via a crafted DAV WRITE...
Apache Http ServerOracle Http Server 12.1.3.0Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
5
CVSSv2
CVE-2014-0098
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation....
Apache Http ServerOracle Secure Global Desktop 4.71Oracle Http Server 12.1.3.0Oracle Secure Global Desktop 4.63Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Oracle Secure Global Desktop 5.0Oracle Secure Global Desktop 5.1Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
6.8
CVSSv2
CVE-2014-0226
Race condition in the mod_status module in the Apache HTTP Server before 2.4.10 allows remote attackers to cause a denial of service (heap-based buffer overflow), or possibly obtain sensitive credential information or execute arbitrary code, via a crafted request that triggers...
Apache Http ServerDebian Debian Linux 8.0Debian Debian Linux 7.0Redhat Jboss Enterprise Application Platform 6.0.0Redhat Jboss Enterprise Application Platform 6.4.0Oracle Secure Global Desktop 4.71Oracle Http Server 12.1.3.0Oracle Secure Global Desktop 4.63Oracle Enterprise Manager Ops Center 12.1.4Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Oracle Secure Global Desktop 5.0Oracle Secure Global Desktop 5.1Oracle Enterprise Manager Ops Center 11.1.3
5.1
CVSSv2
CVE-2013-1862
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a...
Apache Http ServerRedhat Jboss Enterprise Application Platform 6.0.0Redhat Jboss Enterprise Application Platform 6.4.0Oracle Http Server 12.1.3.0Oracle Http Server 12.1.2.0Oracle Http Server 11.1.1.7.0Oracle Http Server 10.1.3.5.0Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Server Aus 6.4Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server Aus 5.9Redhat Enterprise Linux Eus 5.9Redhat Enterprise Linux Eus 6.4Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Opensuse Opensuse 12.3Opensuse Opensuse 11.4Opensuse Opensuse 12.2
5
CVSSv2
CVE-2013-5704
The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue...
Apache Http Server 2.2.0Apache Http Server 2.2.2Apache Http Server 2.2.3Apache Http Server 2.2.4Apache Http Server 2.2.5Apache Http Server 2.2.6Apache Http Server 2.2.8Apache Http Server 2.2.9Apache Http Server 2.2.10Apache Http Server 2.2.11Apache Http Server 2.2.12Apache Http Server 2.2.13Apache Http Server 2.2.14Apache Http Server 2.2.15Apache Http Server 2.2.16Apache Http Server 2.2.17Apache Http Server 2.2.18Apache Http Server 2.2.19Apache Http Server 2.2.20Apache Http Server 2.2.21Apache Http Server 2.2.22Apache Http Server 2.2.23Apache Http Server 2.2.24Apache Http Server 2.2.25Apache Http Server 2.2.26Apache Http Server 2.2.27Apache Http Server 2.4.1Apache Http Server 2.4.2Apache Http Server 2.4.3Apache Http Server 2.4.4Apache Http Server 2.4.6Apache Http Server 2.4.7Apache Http Server 2.4.9Apache Http Server 2.4.10Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Eus 7.3Redhat Enterprise Linux Eus 7.4Redhat Enterprise Linux Eus 7.5Redhat Enterprise Linux Eus 7.6Redhat Enterprise Linux Eus 7.7Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Server Aus 7.3Redhat Enterprise Linux Server Aus 7.4Redhat Enterprise Linux Server Aus 7.6Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Tus 7.3Redhat Enterprise Linux Server Tus 7.6Redhat Enterprise Linux Server Tus 7.7Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Workstation 7.0Redhat Jboss Enterprise Web Server 3.0.0Redhat Jboss Enterprise Web Server 2.0.0Oracle Enterprise Manager Ops CenterOracle Enterprise Manager Ops Center 12.1.4Oracle Enterprise Manager Ops Center 12.2.0Oracle Enterprise Manager Ops Center 12.2.1Oracle Enterprise Manager Ops Center 12.3.0Oracle Http Server 10.1.3.5.0Oracle Http Server 11.1.1.7.0Oracle Http Server 12.1.2.0Oracle Http Server 12.1.3.0Oracle Linux 6Oracle Solaris 11.2Apple Mac Os XApple Mac Os X ServerCanonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 14.10
5
CVSSv2
CVE-2015-1829
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 10.1.3.5, 11.1.1.7, 11.1.1.9, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect availability via unknown vectors related to Web Listener....
Oracle Fusion Middleware 12.1.2.0Oracle Fusion Middleware 12.1.3.0Oracle Fusion Middleware 11.1.1.7Oracle Fusion Middleware 11.1.1.9Oracle Fusion Middleware 10.1.3.5
3.5
CVSSv2
CVE-2015-4914
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 10.1.3.5, 11.1.1.7, 11.1.1.9, 12.1.2.0, and 12.1.3.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Listener....
Oracle Fusion Middleware 12.1.2.0Oracle Fusion Middleware 12.1.3.0Oracle Fusion Middleware 10.1.3.5Oracle Fusion Middleware 11.1.1.7Oracle Fusion Middleware 11.1.1.9
3.5
CVSSv2
CVE-2014-4251
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect integrity via vectors related to plugin 1.1....
Oracle Fusion Middleware 12.1.2.0.0Oracle Fusion Middleware 11.1.1.7.0
2.1
CVSSv2
CVE-2014-4222
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect confidentiality via vectors related to plugin 1.1....
Oracle Fusion Middleware 12.1.2.0.0Oracle Fusion Middleware 11.1.1.7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30758CSRFCVE-2021-44228CVE-2023-33633XPath injectionCVE-2023-33735CVE-2023-29336CVE-2023-34312cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook