ソフト名:Apache Derby 10.6.1.0未満, Oracle InForm Portal 4.5/4.6/5.0
回避策:アップデートにて対応
脆弱性:セキュリティ制限の回避, パスワードの曝露
ソース:http://db.apache.org/derby/
http://www.phaseforward.com/products/clinical/edc/portal/
http://old.nabble.com/-ANNOUNCE--Apache-Derby-10.6.1.0-released-td28610453.html
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
https://issues.apache.org/jira/browse/DERBY-4483
http://marcellmajor.com/derbyhash.html
http://secunia.com/advisories/42948/
http://secunia.com/advisories/42970/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4269
CVE:CVE-2009-4269
危険性:Medium Risk
2011-01-21
2010-08-20
Apache Derby
ソフト名:Apache Derby 10.5.3.0
回避策:アップデートにて対応
脆弱性:機密情報の奪取
ソース:http://db.apache.org/derby/releases/release-10.6.1.0.cgi#Fix+for+Security+Bug+CVE-2009-4269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4269
CVE:CVE-2009-4269
危険性:Low Risk
回避策:アップデートにて対応
脆弱性:機密情報の奪取
ソース:http://db.apache.org/derby/releases/release-10.6.1.0.cgi#Fix+for+Security+Bug+CVE-2009-4269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4269
CVE:CVE-2009-4269
危険性:Low Risk
登録:
投稿 (Atom)
