ID

VAR-201607-0665


CVE

CVE-2016-5457


TITLE

Oracle Sun Systems Products Suite of ILOM In LUMAIN Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2016-003987

DESCRIPTION

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to LUMAIN. (DoS) An attack may be carried out. Oracle has released advance notification regarding the July 2016 Critical Patch Update (CPU) to be released on July 19, 2016. The update addresses 276 vulnerabilities affecting the following software: Oracle Application Express Oracle Database Server Oracle Access Manager Oracle BI Publisher Oracle Business Intelligence Enterprise Edition Oracle Directory Server Enterprise Edition Oracle Exalogic Infrastructure Oracle Fusion Middleware Oracle GlassFish Server Oracle HTTP Server Oracle JDeveloper Oracle Portal Oracle WebCenter Sites Oracle WebLogic Server Outside In Technology Hyperion Financial Reporting Enterprise Manager Base Platform Enterprise Manager for Fusion Middleware Enterprise Manager Ops Center Oracle E-Business Suite Oracle Agile Engineering Data Management Oracle Agile PLM Oracle Demand Planning Oracle Engineering Data Management Oracle Transportation Management PeopleSoft Enterprise FSCM PeopleSoft Enterprise PeopleTools JD Edwards EnterpriseOne Tools Siebel Applications Oracle Fusion Applications Oracle Communications ASAP Oracle Communications Core Session Manager Oracle Communications EAGLE Application Processor Oracle Communications Messaging Server Oracle Communications Network Charging and Control Oracle Communications Operations Monitor Oracle Communications Policy Management Oracle Communications Session Border Controller Oracle Communications Unified Session Manager Oracle Enterprise Communications Broker Oracle Banking Platform Oracle Financial Services Lending and Leasing Oracle FLEXCUBE Direct Banking Oracle Health Sciences Clinical Development Center Oracle Health Sciences Information Manager Oracle Healthcare Analytics Data Integration Oracle Healthcare Master Person Index Oracle Documaker Oracle Insurance Calculation Engine Oracle Insurance Policy Administration J2EE Oracle Insurance Rules Palette MICROS Retail XBRi Loss Prevention Oracle Retail Central Oracle Back Office Oracle Returns Management Oracle Retail Integration Bus Oracle Retail Order Broker Oracle Retail Service Backbone Oracle Retail Store Inventory Management Oracle Utilities Framework Oracle Utilities Network Management System Oracle Utilities Work and Asset Management Oracle In-Memory Policy Analytics Oracle Policy Automation Oracle Policy Automation Connector for Siebel Oracle Policy Automation for Mobile Devices Primavera Contract Management Primavera P6 Enterprise Project Portfolio Management Oracle Java SE Oracle Java SE Embedded Oracle JRockit 40G 10G 72/64 Ethernet Switch Fujitsu M10-1 Servers Fujitsu M10-4 Servers Fujitsu M10-4S Servers ILOM Oracle Switch ES1-24 Solaris Solaris Cluster SPARC Enterprise M3000 Servers SPARC Enterprise M4000 Servers SPARC Enterprise M5000 Servers SPARC Enterprise M8000 Servers SPARC Enterprise M9000 Servers Sun Blade 6000 Ethernet Switched NEM 24P 10GE Sun Data Center InfiniBand Switch 36 Sun Network 10GE Switch 72p Sun Network QDR InfiniBand Gateway Switch Oracle Secure Global Desktop Oracle VM VirtualBox MySQL Server Exploiting the most severe of these vulnerabilities may potentially compromise the database server or the host operating system. Oracle Integrated Lights Out Manager is prone to a remote security vulnerability in ILOM. The vulnerability can be exploited over the 'Multiple' protocol. The 'LUMAIN' sub component is affected. This vulnerability affects the following supported versions: 3.0, 3.1, 3.2. Oracle Sun Systems Products Suite is a Sun system product suite of Oracle Corporation

Trust: 2.34

sources: NVD: CVE-2016-5457 // JVNDB: JVNDB-2016-003987 // BID: 91787 // BID: 91995 // VULHUB: VHN-94276 // VULMON: CVE-2016-5457

AFFECTED PRODUCTS

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.2

Trust: 3.0

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.1

Trust: 3.0

vendor:oraclemodel:integrated lights out managerscope:eqversion:3.0

Trust: 3.0

vendor:oraclemodel:jre updatescope:eqversion:1.8.092

Trust: 0.9

vendor:oraclemodel:jre updatescope:eqversion:1.8.091

Trust: 0.9

vendor:oraclemodel:jre updatescope:eqversion:1.7.0101

Trust: 0.9

vendor:oraclemodel:jre updatescope:eqversion:1.6.0115

Trust: 0.9

vendor:oraclemodel:jdk updatescope:eqversion:1.8.092

Trust: 0.9

vendor:oraclemodel:jdk updatescope:eqversion:1.8.091

Trust: 0.9

vendor:oraclemodel:jdk updatescope:eqversion:1.7.0101

Trust: 0.9

vendor:oraclemodel:jdk updatescope:eqversion:1.6.0115

Trust: 0.9

vendor:oraclemodel:weblogic serverscope:eqversion:12.2.1

Trust: 0.3

vendor:oraclemodel:weblogic serverscope:eqversion:10.3.60

Trust: 0.3

vendor:oraclemodel:weblogic serverscope:eqversion:12.1.3.0

Trust: 0.3

vendor:oraclemodel:webcenter sitesscope:eqversion:11.1.18.0

Trust: 0.3

vendor:oraclemodel:webcenter sitesscope:eqversion:12.2.1.0

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.16

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.14

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.13

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.12

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.11

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.10

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.9

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.8

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0.18

Trust: 0.3

vendor:oraclemodel:vm virtualboxscope:eqversion:5.0

Trust: 0.3

vendor:oraclemodel:utilities work and asset managementscope:eqversion:1.9.1.2.8

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.12.0.3.5

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.12.0.2.12

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.12.0.1.16

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.11.0.5.4

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.11.0.4.41

Trust: 0.3

vendor:oraclemodel:utilities network management systemscope:eqversion:1.10.0.6.27

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.3.0.2.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.3.0.1.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.2.0.3.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.2.0.2.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.2.0.1.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.1.0.2.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:4.1.0.1.0

Trust: 0.3

vendor:oraclemodel:utilities frameworkscope:eqversion:2.2.0.0.0

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.4.1

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.4

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.5

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.4

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.3

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.2

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.1

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.7

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3.6

Trust: 0.3

vendor:oraclemodel:transportation managementscope:eqversion:6.3

Trust: 0.3

vendor:oraclemodel:switch es1-24scope:eqversion:1.3

Trust: 0.3

vendor:oraclemodel:sun network qdr infiniband gateway switchscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:sun network 10ge switch 72pscope:eqversion:1.2

Trust: 0.3

vendor:oraclemodel:sun data center infiniband switchscope:eqversion:362.2.2

Trust: 0.3

vendor:oraclemodel:sun blade ethernet switched nem 24p 10gescope:eqversion:60001.2

Trust: 0.3

vendor:oraclemodel:sparc enterprise m9000 xcpscope:eqversion:1118

Trust: 0.3

vendor:oraclemodel:sparc enterprise m9000 xcpscope:eqversion:1117

Trust: 0.3

vendor:oraclemodel:sparc enterprise m8000 xcpscope:eqversion:1118

Trust: 0.3

vendor:oraclemodel:sparc enterprise m8000 xcpscope:eqversion:1117

Trust: 0.3

vendor:oraclemodel:sparc enterprise m5000 xcpscope:eqversion:1118

Trust: 0.3

vendor:oraclemodel:sparc enterprise m5000 xcpscope:eqversion:1117

Trust: 0.3

vendor:oraclemodel:sparc enterprise m4000 xcpscope:eqversion:1118

Trust: 0.3

vendor:oraclemodel:sparc enterprise m4000 xcpscope:eqversion:1117

Trust: 0.3

vendor:oraclemodel:sparc enterprise m3000 xcpscope:eqversion:1118

Trust: 0.3

vendor:oraclemodel:sparc enterprise m3000 xcpscope:eqversion:1117

Trust: 0.3

vendor:oraclemodel:solaris clusterscope:eqversion:4.3

Trust: 0.3

vendor:oraclemodel:solaris clusterscope:eqversion:3.3

Trust: 0.3

vendor:oraclemodel:solarisscope:eqversion:11.3

Trust: 0.3

vendor:oraclemodel:solarisscope:eqversion:10

Trust: 0.3

vendor:oraclemodel:siebel applicationsscope:eqversion:8.2.2

Trust: 0.3

vendor:oraclemodel:siebel applications ip2016scope: - version: -

Trust: 0.3

vendor:oraclemodel:siebel applications ip2015scope: - version: -

Trust: 0.3

vendor:oraclemodel:siebel applications ip2014scope: - version: -

Trust: 0.3

vendor:oraclemodel:siebel applicationsscope:eqversion:8.5

Trust: 0.3

vendor:oraclemodel:siebel applicationsscope:eqversion:8.1.1

Trust: 0.3

vendor:oraclemodel:secure global desktopscope:eqversion:5.2

Trust: 0.3

vendor:oraclemodel:secure global desktopscope:eqversion:4.71

Trust: 0.3

vendor:oraclemodel:secure global desktopscope:eqversion:4.63

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail store inventory managementscope:eqversion:12.0

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:15.0

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail service backbonescope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:13.4

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:13.3

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail returns managementscope:eqversion:12.0

Trust: 0.3

vendor:oraclemodel:retail order brokerscope:eqversion:5.2

Trust: 0.3

vendor:oraclemodel:retail order brokerscope:eqversion:5.1

Trust: 0.3

vendor:oraclemodel:retail order brokerscope:eqversion:4.1

Trust: 0.3

vendor:oraclemodel:retail order brokerscope:eqversion:15.0

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:15.0

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail integration busscope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:13.4

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:13.3

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail central officescope:eqversion:12.0

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:14.0

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:13.4

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:13.3

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:13.2

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:13.1

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:13.0

Trust: 0.3

vendor:oraclemodel:retail back officescope:eqversion:12.0

Trust: 0.3

vendor:oraclemodel:primavera p6 enterprise project portfolio managementscope:eqversion:8.4

Trust: 0.3

vendor:oraclemodel:primavera p6 enterprise project portfolio managementscope:eqversion:8.3

Trust: 0.3

vendor:oraclemodel:primavera p6 enterprise project portfolio managementscope:eqversion:16.1

Trust: 0.3

vendor:oraclemodel:primavera p6 enterprise project portfolio managementscope:eqversion:15.2

Trust: 0.3

vendor:oraclemodel:primavera p6 enterprise project portfolio managementscope:eqversion:15.1

Trust: 0.3

vendor:oraclemodel:primavera contract managementscope:eqversion:14.2

Trust: 0.3

vendor:oraclemodel:portalscope:eqversion:11.1.16.0

Trust: 0.3

vendor:oraclemodel:policy automation for mobile devicesscope:eqversion:12.1.1

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.6

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.5

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.4

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.3

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.2

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4.1

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.4

Trust: 0.3

vendor:oraclemodel:policy automation connector for siebelscope:eqversion:10.3

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:12.1.1

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:12.1

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.6

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.5

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.4

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.3

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.2

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4.1

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.4

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.3.1

Trust: 0.3

vendor:oraclemodel:policy automationscope:eqversion:10.3

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise peopletoolsscope:eqversion:8.55

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise peopletoolsscope:eqversion:8.54

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise peopletoolsscope:eqversion:8.53

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise fscmscope:eqversion:9.2

Trust: 0.3

vendor:oraclemodel:peoplesoft enterprise fscmscope:eqversion:9.1

Trust: 0.3

vendor:oraclemodel:outside in technologyscope:eqversion:8.5.2

Trust: 0.3

vendor:oraclemodel:outside in technologyscope:eqversion:8.5.1

Trust: 0.3

vendor:oraclemodel:outside in technologyscope:eqversion:8.5.0

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.7

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.29

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.28

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.27

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.26

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.23

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.22

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.21

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.48

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.47

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.46

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.45

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.42

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.41

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.40

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.25

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.24

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.20

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.16

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6.15

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.6

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.44

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.43

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.36

Trust: 0.3

vendor:oraclemodel:mysql serverscope:eqversion:5.5.35

Trust: 0.3

vendor:oraclemodel:mysqlscope:eqversion:5.7.12

Trust: 0.3

vendor:oraclemodel:mysqlscope:eqversion:5.6.30

Trust: 0.3

vendor:oraclemodel:mysqlscope:eqversion:5.5.49

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.8.1

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.8

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.7

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.6

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.5

Trust: 0.3

vendor:oraclemodel:micros retail xbri loss preventionscope:eqversion:10.0.1

Trust: 0.3

vendor:oraclemodel:jrockit r28.3.10scope: - version: -

Trust: 0.3

vendor:oraclemodel:jdeveloperscope:eqversion:12.1.30

Trust: 0.3

vendor:oraclemodel:jdeveloperscope:eqversion:11.1.24.0

Trust: 0.3

vendor:oraclemodel:jdeveloperscope:eqversion:11.1.17.0

Trust: 0.3

vendor:oraclemodel:jdeveloperscope:eqversion:12.2.1.0.0

Trust: 0.3

vendor:oraclemodel:jdeveloperscope:eqversion:11.1.1.9.0

Trust: 0.3

vendor:oraclemodel:jd edwards enterpriseone toolsscope:eqversion:9.2.0.5

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:9.7.1

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:9.6.1

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:10.2.2

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:10.2.0

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:10.1.2

Trust: 0.3

vendor:oraclemodel:insurance rules palettescope:eqversion:10.0.1

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:9.7.1

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:9.6.1

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:10.2.2

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:10.2.0

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:10.1.2

Trust: 0.3

vendor:oraclemodel:insurance policy administration j2eescope:eqversion:10.0.1

Trust: 0.3

vendor:oraclemodel:insurance calculation enginescope:eqversion:9.7.1

Trust: 0.3

vendor:oraclemodel:insurance calculation enginescope:eqversion:10.2.2

Trust: 0.3

vendor:oraclemodel:insurance calculation enginescope:eqversion:10.1.2

Trust: 0.3

vendor:oraclemodel:in-memory policy analyticsscope:eqversion:12.0.1

Trust: 0.3

vendor:oraclemodel:hyperion financial reportingscope:eqversion:11.1.2.4

Trust: 0.3

vendor:oraclemodel:http server 12cscope:eqversion:12.1.3.0

Trust: 0.3

vendor:oraclemodel:http server 11gscope:eqversion:11.1.1.9

Trust: 0.3

vendor:oraclemodel:healthcare master person indexscope:eqversion:4.0.1

Trust: 0.3

vendor:oraclemodel:healthcare master person indexscope:eqversion:3.0.0

Trust: 0.3

vendor:oraclemodel:healthcare master person indexscope:eqversion:2.0.12

Trust: 0.3

vendor:oraclemodel:healthcare analytics data integrationscope:eqversion:3.1.0.0.0

Trust: 0.3

vendor:oraclemodel:health sciences information managerscope:eqversion:3.0.1.0

Trust: 0.3

vendor:oraclemodel:health sciences information managerscope:eqversion:2.0.2.3

Trust: 0.3

vendor:oraclemodel:health sciences information managerscope:eqversion:1.2.8.3

Trust: 0.3

vendor:oraclemodel:health sciences clinical development centerscope:eqversion:3.1.2.0

Trust: 0.3

vendor:oraclemodel:health sciences clinical development centerscope:eqversion:3.1.1.0

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:3.1.2

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:3.0.1

Trust: 0.3

vendor:oraclemodel:glassfish serverscope:eqversion:2.1.1

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:11.1.23.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:11.1.22.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:11.1.18.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:11.1.17.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:12.2.1.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:12.1.3.0.0

Trust: 0.3

vendor:oraclemodel:fusion middlewarescope:eqversion:11.1.1.9

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.10

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.9

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.8

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.7

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.6

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.5

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.4

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.3

Trust: 0.3

vendor:oraclemodel:fusion applicationsscope:eqversion:11.1.2

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4s server xcpscope:eqversion:2290

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4s server xcpscope:eqversion:2271

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4s server xcpscope:eqversion:2230

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4 server xcpscope:eqversion:2290

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4 server xcpscope:eqversion:2271

Trust: 0.3

vendor:oraclemodel:fujitsu m10-4 server xcpscope:eqversion:2230

Trust: 0.3

vendor:oraclemodel:fujitsu m10-1 server xcpscope:eqversion:2290

Trust: 0.3

vendor:oraclemodel:fujitsu m10-1 server xcpscope:eqversion:2271

Trust: 0.3

vendor:oraclemodel:fujitsu m10-1 server xcpscope:eqversion:2230

Trust: 0.3

vendor:oraclemodel:flexcube direct bankingscope:eqversion:12.0.1

Trust: 0.3

vendor:oraclemodel:flexcube direct bankingscope:eqversion:12.0.3

Trust: 0.3

vendor:oraclemodel:flexcube direct bankingscope:eqversion:12.0.2

Trust: 0.3

vendor:oraclemodel:financial services lending and leasingscope:eqversion:14.2

Trust: 0.3

vendor:oraclemodel:financial services lending and leasingscope:eqversion:14.1

Trust: 0.3

vendor:oraclemodel:exalogic infrastructurescope:eqversion:2.0

Trust: 0.3

vendor:oraclemodel:exalogic infrastructurescope:eqversion:1.0

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:12.3.2

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:12.2.2

Trust: 0.3

vendor:oraclemodel:enterprise manager ops centerscope:eqversion:12.1.4

Trust: 0.3

vendor:oraclemodel:enterprise manager for fusion middlewarescope:eqversion:11.1.1.9

Trust: 0.3

vendor:oraclemodel:enterprise manager for fusion middlewarescope:eqversion:11.1.1.7

Trust: 0.3

vendor:oraclemodel:enterprise manager base platformscope:eqversion:13.1.0.0

Trust: 0.3

vendor:oraclemodel:enterprise manager base platformscope:eqversion:12.1.0.5

Trust: 0.3

vendor:oraclemodel:enterprise communications brokerscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:engineering data managementscope:eqversion:6.2.0.0

Trust: 0.3

vendor:oraclemodel:engineering data managementscope:eqversion:6.1.3.0

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.2.3

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.1.2

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.1.1

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.2.5

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.2.4

Trust: 0.3

vendor:oraclemodel:e-business suitescope:eqversion:12.1.3

Trust: 0.3

vendor:oraclemodel:documakerscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:directory server enterprise editionscope:eqversion:7.0

Trust: 0.3

vendor:oraclemodel:directory server enterprise editionscope:eqversion:11.1.1.7

Trust: 0.3

vendor:oraclemodel:demand planningscope:eqversion:12.2

Trust: 0.3

vendor:oraclemodel:demand planningscope:eqversion:12.1

Trust: 0.3

vendor:oraclemodel:database 12c releasescope:eqversion:112.12

Trust: 0.3

vendor:oraclemodel:database 12c releasescope:eqversion:112.11

Trust: 0.3

vendor:oraclemodel:database 11g releasescope:eqversion:211.2.0.4

Trust: 0.3

vendor:oraclemodel:communications unified session managerscope:eqversion:7.3.5

Trust: 0.3

vendor:oraclemodel:communications unified session managerscope:eqversion:7.2.5

Trust: 0.3

vendor:oraclemodel:communications session border controllerscope:eqversion:7.3.0

Trust: 0.3

vendor:oraclemodel:communications session border controllerscope:eqversion:7.2.0

Trust: 0.3

vendor:oraclemodel:communications policy managementscope:eqversion:9.9

Trust: 0.3

vendor:oraclemodel:communications operations monitorscope:eqversion:0

Trust: 0.3

vendor:oraclemodel:communications network charging and controlscope:eqversion:5.0.2.0.0

Trust: 0.3

vendor:oraclemodel:communications network charging and controlscope:eqversion:5.0.1.0.0

Trust: 0.3

vendor:oraclemodel:communications network charging and controlscope:eqversion:5.0.0.2.0

Trust: 0.3

vendor:oraclemodel:communications network charging and controlscope:eqversion:5.0.0.1.0

Trust: 0.3

vendor:oraclemodel:communications network charging and controlscope:eqversion:4.4.1.5.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:7.0.530.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:7.0.529.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:8.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:7.0.5.33.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:7.0.5

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:7.0

Trust: 0.3

vendor:oraclemodel:communications messaging serverscope:eqversion:6.3

Trust: 0.3

vendor:oraclemodel:communications eagle application processorscope:eqversion:16.0

Trust: 0.3

vendor:oraclemodel:communications core session managerscope:eqversion:7.3.5

Trust: 0.3

vendor:oraclemodel:communications core session managerscope:eqversion:7.2.5

Trust: 0.3

vendor:oraclemodel:communications asapscope:eqversion:7.3

Trust: 0.3

vendor:oraclemodel:communications asapscope:eqversion:7.2

Trust: 0.3

vendor:oraclemodel:communications asapscope:eqversion:7.0

Trust: 0.3

vendor:oraclemodel:business intelligence enterprise editionscope:eqversion:11.2.1.0.0

Trust: 0.3

vendor:oraclemodel:business intelligence enterprise editionscope:eqversion:11.1.1.9.0

Trust: 0.3

vendor:oraclemodel:business intelligence enterprise editionscope:eqversion:11.1.1.7.0

Trust: 0.3

vendor:oraclemodel:bi publisherscope:eqversion:12.2.1.0.0

Trust: 0.3

vendor:oraclemodel:bi publisherscope:eqversion:11.1.1.9.0

Trust: 0.3

vendor:oraclemodel:bi publisherscope:eqversion:11.1.1.7.0

Trust: 0.3

vendor:oraclemodel:banking platformscope:eqversion:2.5.0

Trust: 0.3

vendor:oraclemodel:banking platformscope:eqversion:2.4.1

Trust: 0.3

vendor:oraclemodel:banking platformscope:eqversion:2.4.0

Trust: 0.3

vendor:oraclemodel:banking platformscope:eqversion:2.3.0

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:5.0.3

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:5.0.2

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:5.0.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.2.6

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.2.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:3.2.1.00.10

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:2.2.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:1.1.3

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:1.1.2

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:1.1.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:5.0

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.2.3.00.08

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.2

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:4.0

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:3.2.0.00.27

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:3.2

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:2.2

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:2.1

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:2.0

Trust: 0.3

vendor:oraclemodel:application expressscope:eqversion:1.5

Trust: 0.3

vendor:oraclemodel:agile plmscope:eqversion:9.3.5

Trust: 0.3

vendor:oraclemodel:agile plmscope:eqversion:9.3.4

Trust: 0.3

vendor:oraclemodel:agile engineering data managementscope:eqversion:6.2.0.0

Trust: 0.3

vendor:oraclemodel:agile engineering data managementscope:eqversion:6.1.3.0

Trust: 0.3

vendor:oraclemodel:access managerscope:eqversion:10.1.43

Trust: 0.3

vendor:oraclemodel:access managerscope:eqversion:10.1.4.2

Trust: 0.3

vendor:oraclemodel:access managerscope:eqversion:10.1.4

Trust: 0.3

vendor:oraclemodel:access managerscope:eqversion:11.1.2.0.0

Trust: 0.3

vendor:oraclemodel:access managerscope:eqversion:11.1.1.7.0

Trust: 0.3

vendor:ibmmodel:websphere application serverscope:eqversion:9.0

Trust: 0.3

vendor:ibmmodel:websphere application server liberty prscope:eqversion:8.5.5.0-

Trust: 0.3

vendor:ibmmodel:websphere application server full profilescope:eqversion:8.5.5

Trust: 0.3

vendor:ibmmodel:websphere application server liberty profilescope:eqversion:8.5

Trust: 0.3

vendor:ibmmodel:websphere application server full profilescope:eqversion:8.5

Trust: 0.3

vendor:ibmmodel:db2scope:eqversion:9.8

Trust: 0.3

vendor:ibmmodel:db2scope:eqversion:9.7

Trust: 0.3

vendor:ibmmodel:db2scope:eqversion:11.1

Trust: 0.3

vendor:ibmmodel:db2scope:eqversion:10.5

Trust: 0.3

vendor:ibmmodel:db2scope:eqversion:10.1

Trust: 0.3

vendor:citrixmodel:netscaler t1scope:eqversion:0

Trust: 0.3

vendor:citrixmodel:netscaler service delivery appliancescope:eqversion:0

Trust: 0.3

vendor:citrixmodel:netscaler gatewayscope:eqversion:0

Trust: 0.3

vendor:citrixmodel:netscaler application delivery controllerscope:eqversion:0

Trust: 0.3

vendor:citrixmodel:command center appliancescope:eqversion:0

Trust: 0.3

vendor:citrixmodel:cloudbridgescope:eqversion:0

Trust: 0.3

sources: BID: 91787 // BID: 91995 // JVNDB: JVNDB-2016-003987 // CNNVD: CNNVD-201607-821 // NVD: CVE-2016-5457

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2016-5457
value: HIGH

Trust: 1.0

NVD: CVE-2016-5457
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201607-821
value: CRITICAL

Trust: 0.6

VULHUB: VHN-94276
value: HIGH

Trust: 0.1

VULMON: CVE-2016-5457
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2016-5457
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-94276
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2016-5457
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-94276 // VULMON: CVE-2016-5457 // JVNDB: JVNDB-2016-003987 // CNNVD: CNNVD-201607-821 // NVD: CVE-2016-5457

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2016-5457

THREAT TYPE

network

Trust: 0.6

sources: BID: 91787 // BID: 91995

TYPE

Unknown

Trust: 0.6

sources: BID: 91787 // BID: 91995

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-003987

PATCH

title:Oracle Critical Patch Update Advisory - July 2016url:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Trust: 0.8

title:Text Form of Oracle Critical Patch Update - July 2016 Risk Matricesurl:http://www.oracle.com/technetwork/topics/security/cpujul2016verbose-2881721.html

Trust: 0.8

title:July 2016 Critical Patch Update Releasedurl:https://blogs.oracle.com/security/entry/july_2016_critical_patch_update

Trust: 0.8

title:Oracle Sun Systems Products Suite ILOM Fixes for component security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63181

Trust: 0.6

title:Oracle: Oracle Critical Patch Update Advisory - July 2016url:https://vulmon.com/vendoradvisory?qidtp=oracle_advisories&qid=3a04485ebb79f7fbc2472bf9af5ce489

Trust: 0.1

sources: VULMON: CVE-2016-5457 // JVNDB: JVNDB-2016-003987 // CNNVD: CNNVD-201607-821

EXTERNAL IDS

db:NVDid:CVE-2016-5457

Trust: 2.9

db:BIDid:91787

Trust: 1.5

db:BIDid:91995

Trust: 1.5

db:SECTRACKid:1036408

Trust: 1.2

db:JVNDBid:JVNDB-2016-003987

Trust: 0.8

db:CNNVDid:CNNVD-201607-821

Trust: 0.7

db:VULHUBid:VHN-94276

Trust: 0.1

db:VULMONid:CVE-2016-5457

Trust: 0.1

sources: VULHUB: VHN-94276 // VULMON: CVE-2016-5457 // BID: 91787 // BID: 91995 // JVNDB: JVNDB-2016-003987 // CNNVD: CNNVD-201607-821 // NVD: CVE-2016-5457

REFERENCES

url:http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Trust: 2.5

url:http://www.securityfocus.com/bid/91995

Trust: 1.3

url:http://www.securityfocus.com/bid/91787

Trust: 1.2

url:http://www.securitytracker.com/id/1036408

Trust: 1.2

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-5457

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-5457

Trust: 0.8

url:http://www.oracle.com

Trust: 0.3

url:http://support.citrix.com/article/ctx216642

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21984819

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21988710

Trust: 0.3

url:http://www.oracle.com/index.html

Trust: 0.3

url:https://cwe.mitre.org/data/definitions/.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

url:http://tools.cisco.com/security/center/viewalert.x?alertid=47152

Trust: 0.1

sources: VULHUB: VHN-94276 // VULMON: CVE-2016-5457 // BID: 91787 // BID: 91995 // JVNDB: JVNDB-2016-003987 // CNNVD: CNNVD-201607-821 // NVD: CVE-2016-5457

CREDITS

Oracle

Trust: 0.6

sources: BID: 91787 // BID: 91995

SOURCES

db:VULHUBid:VHN-94276
db:VULMONid:CVE-2016-5457
db:BIDid:91787
db:BIDid:91995
db:JVNDBid:JVNDB-2016-003987
db:CNNVDid:CNNVD-201607-821
db:NVDid:CVE-2016-5457

LAST UPDATE DATE

2024-08-14T12:16:04.936000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-94276date:2017-09-01T00:00:00
db:VULMONid:CVE-2016-5457date:2017-09-01T00:00:00
db:BIDid:91787date:2018-10-15T09:00:00
db:BIDid:91995date:2016-07-19T00:00:00
db:JVNDBid:JVNDB-2016-003987date:2016-07-28T00:00:00
db:CNNVDid:CNNVD-201607-821date:2016-07-25T00:00:00
db:NVDid:CVE-2016-5457date:2017-09-01T01:29:29.977

SOURCES RELEASE DATE

db:VULHUBid:VHN-94276date:2016-07-21T00:00:00
db:VULMONid:CVE-2016-5457date:2016-07-21T00:00:00
db:BIDid:91787date:2016-07-15T00:00:00
db:BIDid:91995date:2016-07-19T00:00:00
db:JVNDBid:JVNDB-2016-003987date:2016-07-28T00:00:00
db:CNNVDid:CNNVD-201607-821date:2016-07-25T00:00:00
db:NVDid:CVE-2016-5457date:2016-07-21T10:15:13.677