CVE-2010-4444 — Oracle Opensso vulnerability

12 documents4 sources

Severity

6.8MEDIUMNVD

EPSS

1.2%

top 21.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Opensso

Timeline

PublishedJan 19

Latest updateMay 17

Description

Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7.1, and 8 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

▶NVDoracle/opensso7, 7.1, 8+2

🔴Vulnerability Details

GHSA

GHSA-4r6q-r4w3-542r: Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7↗2022-05-17

▶

CVEList

CVE-2010-4444: Unspecified vulnerability in Oracle Sun Java System Access Manager and Oracle OpenSSO 7, 7↗2011-01-19

▶

💥Exploits & PoCs

Exploit-DB

ASX to MP3 3.1.3.7 - '.m3u' Local Buffer Overflow↗2017-10-11

▶

Exploit-DB

Freefloat FTP Server - Remote Buffer Overflow↗2010-12-05

▶

Exploit-DB

Mediacoder 0.7.5.4792 - Local Buffer Overflow (SEH)↗2010-11-29

▶

Exploit-DB

OtsTurntables 1.00.048 - '.m3u'/'.ofl' Local Buffer Overflow (SEH)↗2010-11-28

▶

Exploit-DB

Xion Audio Player 1.0.127 - '.m3u' Local Buffer Overflow↗2010-11-23

▶