QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-3564

Back to search

CVE-2010-3564

Published: Oct 14, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

Unspecified vulnerability in the Oracle Communications Messaging Server (Sun Java System Messaging Server) component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable downstream vendor that the Kerberos implementation does not properly check AP-REQ requests, which allows attackers to cause a denial of service in the JVM. NOTE: CVE has not investigated the apparent discrepancy between the two vendors regarding the consequences of this issue.

VendorProductVersions

n/a

n/a

affected
n/a

References

RHSA-2010:0865
vendor-advisory
x_refsource_REDHAT
GLSA-201406-32
vendor-advisory
x_refsource_GENTOO
43963
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:12398
vdb-entry
signature
x_refsource_OVAL
SSRT100333
vendor-advisory
x_refsource_HP
RHSA-2010:0768
vendor-advisory
x_refsource_REDHAT
FEDORA-2010-16240
vendor-advisory
x_refsource_FEDORA
USN-1010-1
vendor-advisory
x_refsource_UBUNTU
41972
third-party-advisory
x_refsource_SECUNIA
ADV-2010-3086
vdb-entry
x_refsource_VUPEN
HPSBUX02608
vendor-advisory
x_refsource_HP
TA10-287A
third-party-advisory
x_refsource_CERT
42377
third-party-advisory
x_refsource_SECUNIA
FEDORA-2010-16312
vendor-advisory
x_refsource_FEDORA
FEDORA-2010-16294
vendor-advisory
x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now