Oracle Identity Managemet Remote Security Vulnerability

Summary

Oracle Identity Management is prone to a remote security vulnerability in Application Server Single Sign-On component; fixes are available.

Credit:

The original article can be found at: http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html


Details

Vulnerable Systems:
 * Oracle Oracle Identity Management 10g 10.1.4 .3.0

The vulnerability can be exploited over the ‘HTTP’ protocol. The ‘Cookies/Tokens, Redirects’ sub component is affected.

CVE Information:
CVE-2012-0518

Disclosure Timeline:
Published: Oct 16 2012 12:00AM
Updated: Oct 16 2012 12:00AM

Categories: News