Vulnerability Description
Unspecified vulnerability in the Oracle GoldenGate Veridata component in Oracle Fusion Middleware 3.0.0.4 allows remote attackers to affect availability via unknown vectors related to Server. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party researcher that this is a buffer overflow via a crafted XML soap request and a value that does not contain the expected 0x20 terminator character.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Fusion Middleware | 3.0.0.4 |
References
- http://secunia.com/advisories/42979Vendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.htmlVendor Advisory
- http://www.securityfocus.com/bid/45868
- http://www.securitytracker.com/id?1024981
- http://www.vupen.com/english/advisories/2011/0143Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-11-019/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64775
- http://secunia.com/advisories/42979Vendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.htmlVendor Advisory
- http://www.securityfocus.com/bid/45868
- http://www.securitytracker.com/id?1024981
- http://www.vupen.com/english/advisories/2011/0143Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-11-019/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64775
FAQ
What is CVE-2010-4416?
CVE-2010-4416 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in the Oracle GoldenGate Veridata component in Oracle Fusion Middleware 3.0.0.4 allows remote attackers to affect availability via unknown vectors related to Server. NOTE: t...
How severe is CVE-2010-4416?
CVE-2010-4416 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-4416?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Fusion Middleware.