Rewterz Threat Alert – A flaw in vCard processing could Allow Hackers to Compromise a Windows PC
January 16, 2019Rewterz Threat Advisory – Oracle Enterprise Manager for Virtualization Multiple Vulnerabilities
January 17, 2019Rewterz Threat Alert – A flaw in vCard processing could Allow Hackers to Compromise a Windows PC
January 16, 2019Rewterz Threat Advisory – Oracle Enterprise Manager for Virtualization Multiple Vulnerabilities
January 17, 2019SEVERITY: Medium
ANALYSIS SUMMARY
A vulnerability has been reported in Oracle HTTP Server, which can be exploited by malicious, local users to gain escalated privileges. This vulnerability resides in the Oracle HTTP Server component of Oracle Fusion Middleware (subcomponent: Web Listener). The supported version that is affected is 12.2.1.3. The flaw can easily be exploited by a low privileged attacker, with logon to the infrastructure where Oracle HTTP Server executes, to compromise Oracle HTTP Server which can be taken over if the attack is successful.
AFFECTED PRODUCTS
Oracle HTTP Server 12.x
IMPACT
Privilege Escalation
REMEDIATION
Apply update.