Oracle GlassFish/Java System Application Server CORBA ORB Subcomponent DoS Vulnerability Network Vulnerability

Summary

This host is running Oracle GlassFish/Java System Application Server and is prone to denial of service vulnerability.

Impact

Successful exploitation could allow malicious attackers to cause a denial of service. Impact Level: Application

Solution

Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html ***** NOTE: Ignore this warning, if above mentioned patch is manually applied. *****

Insight

The flaw is caused due to an unspecified error within the CORBA ORB subcomponent, which allows remote users to cause a denial of service condition.

Affected

Oracle GlassFish version 2.1.1, 3.0.1 and 3.1.2 Oracle Java System Application Server version 8.1 and 8.2

References

http://osvdb.org/show/osvdb/86388
http://secunia.com/advisories/51017/
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-3155
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Firebird SQL 'op_connect_request' Denial Of Service Vulnerability (Win)
CUPS '_cupsImageReadTIFF()' Integer Overflow Vulnerability
ejabberd 'client2server' Message Remote Denial of Service Vulnerability
DoSable squid proxy server
freeFTPD PORT Command Denial of Service Vulnerability

Take action and discover your vulnerabilities