CVE-2009-1010

Oracle Application Server <8.3.0 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1008.

References (7)

[Broken Link] http://osvdb.org/53749

[Permissions Required] http://secunia.com/advisories/34693

[Third Party Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21660640

[Third Party Advisory] http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/34461

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1022055

[Third Party Advisory, US Government Resource] http://www.us-cert.gov/cas/techalerts/TA09-105A.html

Scores

EPSS 0.0010

EPSS Percentile 26.7%

Details

Status published

Products (8)

ibm/websphere_portal 6.0.0.0

ibm/websphere_portal 6.0.1.0

ibm/websphere_portal 6.1.0.0

ibm/websphere_portal 6.1.5.0

ibm/websphere_portal 7.0.0.0

ibm/websphere_portal 8.0.0.0

oracle/application_server 8.2.2

oracle/application_server 8.3.0

Published Apr 15, 2009

Tracked Since Feb 18, 2026