CVE-2011-3559

HIGH

Description

Unspecified vulnerability in Oracle Communications Server 2.0; GlassFish Enterprise Server 2.1.1, 3.0.1, and 3.1.1; and Sun Java System App Server 8.1 and 8.2 allows remote attackers to affect availability via unknown vectors related to Web Container.

References

http://osvdb.org/76476

http://secunia.com/advisories/46523

http://secunia.com/advisories/46524

http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html

http://www.securityfocus.com/bid/50204

http://www.securitytracker.com/id?1026222

https://exchange.xforce.ibmcloud.com/vulnerabilities/70816

Details

Source: MITRE

Published: 2011-10-18

Updated: 2017-08-29

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (7 total)

ID	Name	Product	Family	Severity
107810	Solaris 10 (x86) : 119167-43	Nessus	Solaris Local Security Checks	high
58089	Oracle GlassFish Server 2.1.1 < 2.1.1.14 / 3.0.1 < 3.0.1.4 / 3.1.1 < 3.1.1.1 Web Container Component Unspecified Vulnerability	Nessus	Web Servers	high
23610	Solaris 9 (x86) : 119167-43	Nessus	Solaris Local Security Checks	high
23552	Solaris 9 (sparc) : 119166-43	Nessus	Solaris Local Security Checks	high
23413	Solaris 8 (sparc) : 119166-43	Nessus	Solaris Local Security Checks	high
22988	Solaris 10 (x86) : 119167-43 (deprecated)	Nessus	Solaris Local Security Checks	high
22955	Solaris 10 (sparc) : 119166-43 (deprecated)	Nessus	Solaris Local Security Checks	high