Release date:
Updated on:
Affected Systems:
Oracle GlassFish Enterprise Server 3.1.1
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2012-0551
Oracle GlassFish Server is an open-source and open community platform for building and deploying next-generation applications and services.
The GlassFish Enterprise Server Component in Oracle Sun Products Suite GlassFish Enterprise Server 3.1.1 has a security vulnerability in implementation, remote unauthenticated attackers can influence the confidentiality and integrity of the following versions in unknown ways related to Web iner: GlassFish Enterprise Server 3.1.1.
<* Source: vendor
Link: http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Oracle
------
Oracle has released a Security Bulletin (cpuapr2012-366314) and patches for this:
Cpuapr2012-366314: Oracle Critical Patch Update Advisory-specification l 2012
Link: http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html