CVE-2007-5521
First published: Wed Oct 17 2007(Updated: )
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS06.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Application Server | =10.1.2.2 | |
| Oracle Application Server | =10.1.2.0.2 | |
| Oracle Application Server | =10.1.3.3 | |
| Oracle Application Server | =9.0.4.3 | |
| Oracle Collaboration Suite 10g release 1 | =10.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securitytracker.com/id?1018823
- http://secunia.com/advisories/27251
- http://www.us-cert.gov/cas/techalerts/TA07-290A.html
- http://secunia.com/advisories/27409
- http://www.vupen.com/english/advisories/2007/3524
- http://www.vupen.com/english/advisories/2007/3626
- http://marc.info/?l=bugtraq&m=119332677525918&w=2
- http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
Frequently Asked Questions
What is the severity of CVE-2007-5521?
CVE-2007-5521 has an unspecified severity due to the lack of detailed impact information.
How do I fix CVE-2007-5521?
To remediate CVE-2007-5521, apply the latest security patches provided by Oracle for the affected versions.
Which versions are affected by CVE-2007-5521?
CVE-2007-5521 affects Oracle Application Server versions 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, as well as Oracle Collaboration Suite 10.1.2.
Is there a workaround for CVE-2007-5521?
Currently, there is no documented workaround for CVE-2007-5521, and updating is the recommended course of action.
Can CVE-2007-5521 be exploited remotely?
Yes, CVE-2007-5521 has remote attack vectors, making it potentially exploitable from outside the network.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/oracle
- canonical/oracle application server
- version/oracle application server/10.1.2.2
- version/oracle application server/10.1.2.0.2
- version/oracle application server/10.1.3.3
- version/oracle application server/9.0.4.3
- canonical/oracle collaboration suite 10g release 1
- version/oracle collaboration suite 10g release 1/10.1.2