CVE-2010-3544

Published: Oct 14, 2010Modified: Apr 29, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:P

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0 allows remote attackers to affect integrity and availability via unknown vectors related to Administration. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable source that this is cross-site request forgery (CSRF) that allows remote attackers to stop an instance via the management console.

Affected (1)

Products: Oracle: Sun Products Suite

1 product

Sun Products Suite

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Sun Products Suite	Version 7.0

References (8)

http://jvn.jp/en/jp/JVN50133036/index.html

Source: secalert_us@oracle.com

http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000042.html

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

Source: secalert_us@oracle.com

US Government Resource

http://jvn.jp/en/jp/JVN50133036/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000042.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.