Vulnerabilities > CVE-2012-3183 - Unspecified vulnerability in Oracle Fusion Middleware
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Advanced UI, a different vulnerability than CVE-2012-3185 and CVE-2012-3186.
Vulnerable Configurations
Exploit-Db
description | Oracle WebCenter Sites (FatWire Content Server) Multiple Vulnerabilities. CVE-2012-3183,CVE-2012-3184,CVE-2012-3185,CVE-2012-3186. Webapps exploits for multi... |
id | EDB-ID:22041 |
last seen | 2016-02-02 |
modified | 2012-10-17 |
published | 2012-10-17 |
reporter | SEC Consult |
source | https://www.exploit-db.com/download/22041/ |
title | Oracle WebCenter Sites FatWire Content Server Multiple Vulnerabilities |
Nessus
NASL family | Windows |
NASL id | ORACLE_WEBCENTER_SITES_OCT_2012_CPU.NASL |
description | The remote Oracle WebCenter Sites install is missing patches from the October 2012 CPU. As a result, it may be affected by multiple vulnerabilities : - A cross-site request forgery vulnerability exists that can be triggered by tricking a victim into clicking an image link on a specially crafted page. (CVE-2012-3185) - A flaw in the UI Subcomponent could allow an authenticated user the ability to alter the email address information of other users. (CVE-2012-3183) - The UI Subcomponent is affected by a cross-site scripting vulnerability due to lack of sanitization for the |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 72778 |
published | 2014-03-03 |
reporter | This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/72778 |
title | Oracle WebCenter Sites Multiple Vulnerabilities (October 2012 CPU) |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/117458/SA-20121017-2.txt |
id | PACKETSTORM:117458 |
last seen | 2016-12-05 |
published | 2012-10-17 |
reporter | F. Lukavsky |
source | https://packetstormsecurity.com/files/117458/Oracle-WebCenter-Sites-AKA-FatWire-XSS-SQL-Injection-CSRF.html |
title | Oracle WebCenter Sites (AKA FatWire) XSS / SQL Injection / CSRF |
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:75854 |
last seen | 2017-11-19 |
modified | 2014-07-01 |
published | 2014-07-01 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-75854 |
title | Oracle WebCenter Sites (FatWire Content Server) Multiple Vulnerabilities |