Vulnerabilities > CVE-2013-1509 - HTTP Header Injection vulnerability in Oracle Fusion Middleware 11.1.1.6.0/11.1.1.6.1/7.6.2

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
oracle
exploit available
NVD
Published: 2013-04-17
Updated: 2013-12-01

Summary

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites.

Vulnerable Configurations

Part Description Count
Application
Oracle
3

Exploit-Db

descriptionOracle WebCenter Sites Satellite Server - HTTP Header Injection. CVE-2013-1509. Webapps exploit for windows platform
idEDB-ID:24964
last seen2016-02-03
modified2013-04-18
published2013-04-18
reporterSEC Consult
sourcehttps://www.exploit-db.com/download/24964/
titleOracle WebCenter Sites Satellite Server - HTTP Header Injection

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/121337/SA-20130417-2.txt
idPACKETSTORM:121337
last seen2016-12-05
published2013-04-17
reporterKestutis Gudinavicius
sourcehttps://packetstormsecurity.com/files/121337/Oracle-WebCenter-Fatwire-Header-Injection.html
titleOracle WebCenter / Fatwire Header Injection

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:78637
last seen2017-11-19
modified2014-07-01
published2014-07-01
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-78637
titleOracle WebCenter Sites Satellite Server - HTTP Header Injection

References