Published: 14/10/2010 Updated: 11/11/2010

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 355

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Unspecified vulnerability in the BPEL Console component in Oracle Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0 allows remote authenticated users to affect integrity via unknown vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle fusion middleware 11.1.1.1.0
oracle fusion middleware 11.1.1.2.0

source: wwwsecurityfocuscom/bid/43954/info Oracle Fusion Middleware is prone to a cross-site scripting vulnerability in BPEL Console The vulnerability can be exploited over the 'HTTP' protocol For an exploit to succeed, the attacker must have 'Valid Session' privileges An attacker may leverage this issue to execute arbitrary script c ...

Oracle BPEL Console version 101330 suffers from a cross site scripting vulnerability ...

NVD-CWE-noinfo http://www.us-cert.gov/cas/techalerts/TA10-287A.html http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html https://nvd.nist.gov https://www.exploit-db.com/exploits/34834/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3581

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect