CVE-2013-3772
https://notcve.org/view.php?id=CVE-2013-3772
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms. Vulnerabilidad sin especificar en el componente Oracle WebCenter Content en Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, y 11.1.1.7.0 permite a atacantes remotos comprometer la integridad a través de vectores desconocidos relacionado con los Web Forms. • http://osvdb.org/95274 http://secunia.com/advisories/54227 http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html http://www.securityfocus.com/bid/61220 http://www.securitytracker.com/id/1028801 https://exchange.xforce.ibmcloud.com/vulnerabilities/85661 •
CVE-2013-3769
https://notcve.org/view.php?id=CVE-2013-3769
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Site Studio. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1, v11.1.1.6.0, y v11.1.1.7.0 permite a atacantes remotos afectar la integridad mediante vectores relacionados con Site Studio. • http://osvdb.org/95273 http://secunia.com/advisories/54227 http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html http://www.securityfocus.com/bid/61223 http://www.securitytracker.com/id/1028801 https://exchange.xforce.ibmcloud.com/vulnerabilities/85660 •
CVE-2013-3755
https://notcve.org/view.php?id=CVE-2013-3755
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5.0 allows remote attackers to affect integrity via vectors related to SSO Engine. Vulnerabilidad no especificada en el componente Oracle Access Manager en Oracle Fusion Middleware 11.1.1.5.0 permite a atacantes remotos afectar a la integridad a través de vectors relacionado con SSO Engine. • http://osvdb.org/95272 http://secunia.com/advisories/54236 http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html http://www.securityfocus.com/bid/61212 http://www.securitytracker.com/id/1028801 https://exchange.xforce.ibmcloud.com/vulnerabilities/85659 •
CVE-2013-2390
https://notcve.org/view.php?id=CVE-2013-2390
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors related to WebLogic Console, a different vulnerability than CVE-2013-1504. Vulnerabilidad sin especificar en el componente Oracle WebLogic Server en Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, y 12.1.1, permite a atacantes remotos comprometer la integridad a través de vectores desconocidos relacionados con Wevlogic Console. Vulnerabilidad distinta de CVE-2013-1504. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVE-2013-1559 – Oracle WebCenter Content CheckOutAndOpen.dll ActiveX coao/openWebdav Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1559
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote authenticated users to affect availability via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1 y v11.1.1.6.0 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Content Server. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle WebCenter Content. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the CheckOutAndOpen.dll ActiveX control's coao and openWebdav methods. By specifying a carefully constructed path an attacker can force the contents of the file to be passed to ShellExecuteExW. • https://www.exploit-db.com/exploits/25979 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •