Oracle Adaptive Access Manager Unspecified Remote Vulnerability (January 2015 CPU)

medium Nessus Plugin ID 80997

Synopsis

The remote host is affected by an unspecified vulnerability.

Description

The remote host has a version of Oracle Adaptive Access Manager installed that is affected by an unspecified remote vulnerability in the OAM Integration subcomponent, which can be exploited by a remote, authenticated user to impact confidentiality and integrity.

Solution

Apply the appropriate patch according to the January 2015 Oracle Critical Patch Update advisory.

See Also

http://www.nessus.org/u?75c6cafb

Plugin Details

Severity: Medium

ID: 80997

File Name: oracle_oaam_cpu_jan_2015.nasl

Version: 1.11

Type: local

Agent: windows, macosx, unix

Family: Misc.

Published: 1/26/2015

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.7

CVSS v2

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N

Vulnerability Information

CPE: cpe:/a:oracle:fusion_middleware

Required KB Items: installed_sw/Oracle Adaptive Access Manager

Exploit Ease: No known exploits are available

Patch Publication Date: 1/20/2015

Vulnerability Publication Date: 1/20/2015

Reference Information

CVE: CVE-2014-6576

BID: 72152