Detections
Analytics
Solaris 10 (sparc) : 128640-30
medium Nessus Plugin ID 107469
Language:
Synopsis
The remote host is missing Sun Security Patch number 128640-30Description
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server.Solution
Install patch 128640-30 or higherSee Also
Plugin Details
Severity: Medium
ID: 107469
File Name: solaris10_128640-30.nasl
Version: 1.6
Type: local
Family: Solaris Local Security Checks
Published: 3/12/2018
Updated: 1/14/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Medium
Base Score: 5.8
Temporal Score: 4.5
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P
CVSS Score Source: CVE-2009-3555
Vulnerability Information
CPE: cpe:/o:oracle:solaris:10, p-cpe:/a:oracle:solaris:10:128640
Required KB Items: Host/local_checks_enabled, Host/Solaris/showrev
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/1/2012
Vulnerability Publication Date: 7/14/2009
Reference Information
CVE: CVE-2009-0217, CVE-2009-2625, CVE-2009-3555, CVE-2011-3564, CVE-2011-5035