Vulnerability Details CVE-2007-5524
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 76.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=119332677525918&w=2
- http://secunia.com/advisories/27251
- http://secunia.com/advisories/27409
- http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
- http://www.securitytracker.com/id?1018823
- http://www.us-cert.gov/cas/techalerts/TA07-290A.html
- http://www.vupen.com/english/advisories/2007/3524
- http://www.vupen.com/english/advisories/2007/3626
- http://marc.info/?l=bugtraq&m=119332677525918&w=2
- http://secunia.com/advisories/27251
- http://secunia.com/advisories/27409
- http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
- http://www.securitytracker.com/id?1018823
- http://www.us-cert.gov/cas/techalerts/TA07-290A.html
- http://www.vupen.com/english/advisories/2007/3524
- http://www.vupen.com/english/advisories/2007/3626
Products affected by CVE-2007-5524
-
cpe:2.3:a:oracle:application_server:10.1.2.0.2
-
cpe:2.3:a:oracle:application_server:10.1.2.2
-
cpe:2.3:a:oracle:application_server:9.0.4.3
-
cpe:2.3:a:oracle:collaboration_suite:10.1.2