Test Kennung:	1.3.6.1.4.1.25623.1.0.810747
Kategorie:	Web Servers
Titel:	Oracle GlassFish Server 3.1.2 Multiple Vulnerabilities
Zusammenfassung:	Oracle GlassFish Server is prone to multiple; vulnerabilities.
Beschreibung:	Summary: Oracle GlassFish Server is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to unspecified errors in the Java Server Faces, Administration, Web Container (Apache Commons FileUpload) and Administration Graphical User Interface sub-components. Vulnerability Impact: Successful exploitation will allow remote users unauthorized read access to a subset of Oracle GlassFish Server accessible data, conduct a denial of service condition and have an impact on confidentiality and integrity. Affected Software/OS: Oracle GlassFish Server version 3.1.2. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3626 BugTraq ID: 97896 http://www.securityfocus.com/bid/97896 http://www.securitytracker.com/id/1038293 Common Vulnerability Exposure (CVE) ID: CVE-2017-10400 BugTraq ID: 101383 http://www.securityfocus.com/bid/101383 http://www.securitytracker.com/id/1039606 Common Vulnerability Exposure (CVE) ID: CVE-2016-3092 BugTraq ID: 91453 http://www.securityfocus.com/bid/91453 Debian Security Information: DSA-3609 (Google Search) http://www.debian.org/security/2016/dsa-3609 Debian Security Information: DSA-3611 (Google Search) http://www.debian.org/security/2016/dsa-3611 Debian Security Information: DSA-3614 (Google Search) http://www.debian.org/security/2016/dsa-3614 https://security.gentoo.org/glsa/201705-09 https://security.gentoo.org/glsa/202107-39 http://jvn.jp/en/jp/JVN89379547/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000121 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html http://mail-archives.apache.org/mod_mbox/commons-dev/201606.mbox/%3CCAF8HOZ%2BPq2QH8RnxBuJyoK1dOz6jrTiQypAC%2BH8g6oZkBg%2BCxg%40mail.gmail.com%3E https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E RedHat Security Advisories: RHSA-2016:2068 http://rhn.redhat.com/errata/RHSA-2016-2068.html RedHat Security Advisories: RHSA-2016:2069 http://rhn.redhat.com/errata/RHSA-2016-2069.html RedHat Security Advisories: RHSA-2016:2070 http://rhn.redhat.com/errata/RHSA-2016-2070.html RedHat Security Advisories: RHSA-2016:2071 http://rhn.redhat.com/errata/RHSA-2016-2071.html RedHat Security Advisories: RHSA-2016:2072 http://rhn.redhat.com/errata/RHSA-2016-2072.html RedHat Security Advisories: RHSA-2016:2599 http://rhn.redhat.com/errata/RHSA-2016-2599.html RedHat Security Advisories: RHSA-2016:2807 http://rhn.redhat.com/errata/RHSA-2016-2807.html RedHat Security Advisories: RHSA-2016:2808 http://rhn.redhat.com/errata/RHSA-2016-2808.html RedHat Security Advisories: RHSA-2017:0455 https://access.redhat.com/errata/RHSA-2017:0455 RedHat Security Advisories: RHSA-2017:0456 https://access.redhat.com/errata/RHSA-2017:0456 RedHat Security Advisories: RHSA-2017:0457 http://rhn.redhat.com/errata/RHSA-2017-0457.html http://www.securitytracker.com/id/1036427 http://www.securitytracker.com/id/1036900 http://www.securitytracker.com/id/1037029 SuSE Security Announcement: openSUSE-SU-2016:2252 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-09/msg00025.html http://www.ubuntu.com/usn/USN-3024-1 http://www.ubuntu.com/usn/USN-3027-1 Common Vulnerability Exposure (CVE) ID: CVE-2018-2911 BugTraq ID: 105618 http://www.securityfocus.com/bid/105618 Common Vulnerability Exposure (CVE) ID: CVE-2018-3152
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.