CVE-2012-1740
high
CVSS v3
—
CVSS v2
7.8
VIR risk
7.8
Description
Unspecified vulnerability in the Oracle Application Express Listener component in Oracle Application Express Listener 1.1-ea, 1.1.1, 1.1.2, and 1.1.3 allows remote attackers to affect confidentiality via unknown vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| oracle | application_express_listener | 1.1-ea | |
| oracle | application_express_listener | 1.1.1 | |
| oracle | application_express_listener | 1.1.2 | |
| oracle | application_express_listener | 1.1.3 | |
References
- http://osvdb.org/83950
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
- http://www.securityfocus.com/bid/54498
- http://www.securitytracker.com/id?1027270
- http://osvdb.org/83950
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
- http://www.securityfocus.com/bid/54498
- http://www.securitytracker.com/id?1027270
Verify integrity in audit chain (admin only). AS-IS.