CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-1542
https://notcve.org/view.php?id=CVE-2013-1542
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect integrity via unknown vectors related to Servlet Runtime. Vulnerabilidad no especificada en el componente Oracle Containers para J2EE de Oracle Fusion Middleware v10.1.3.5 permite a atacantes remotos afectar la integridad a través de vectores desconocidos relacionados con Servlet Runtime. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1522
https://notcve.org/view.php?id=CVE-2013-1522
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote attackers to affect integrity via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1 y v11.1.1.6.0 permite a atacantes remotos afectar la integridad mediante vectores desconocidos relacionados con Content Server. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 6.4EPSS: 26%CPEs: 1EXPL: 0CVE-2013-1516 – Oracle Document Capture BlackIceDevMode.ocx ActiveX Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1516
Unspecified vulnerability in the Oracle WebCenter Capture component in Oracle Fusion Middleware 10.1.3.5.1 allows remote authenticated users to affect availability via unknown vectors related to Import Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Capture en Oracle Fusion Middleware v10.1.3.5.1 permite a usuarios remotos autenticados afectar la disponibilidad mediante vectores desconocidos relacionados con Import Server. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Document Capture. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the BlackIceDevMode.ocx ActiveX control. This component performs insufficient bounds checking on user-supplied data passed in the SetAnnotationFont() method which results in stack corruption. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 10.0EPSS: 95%CPEs: 2EXPL: 1CVE-2013-1559 – Oracle WebCenter Content CheckOutAndOpen.dll ActiveX coao/openWebdav Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1559
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote authenticated users to affect availability via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1 y v11.1.1.6.0 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Content Server. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle WebCenter Content. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the CheckOutAndOpen.dll ActiveX control's coao and openWebdav methods. By specifying a carefully constructed path an attacker can force the contents of the file to be passed to ShellExecuteExW. • https://www.exploit-db.com/exploits/25979 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-1497
https://notcve.org/view.php?id=CVE-2013-1497
Unspecified vulnerability in the Oracle COREid Access component in Oracle Fusion Middleware 10.1.4.3.0 allows remote attackers to affect integrity via unknown vectors related to WebGate - WebServer plugin. Vulnerabilidad no especificada en el componente Oracle COREid Access en Oracle Fusion Middleware v10.1.4.3.0 permite a atacantes remotos afectar la integridad mediante vectores relacionados con WebGate- WebServer plugin. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •