Main Vulnerability Database Vulnerabilities #VU45422

Input validation error in Sun Convergence - CVE-2010-4464

Published: January 19, 2011 / Updated: August 11, 2020

Vulnerability identifier: #VU45422

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2010-4464

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Oracle

Affected software:
Sun Convergence

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail.

How to mitigate CVE-2010-4464

Install update from vendor's website.

Sources

http://osvdb.org/70592
http://secunia.com/advisories/42987
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
http://www.securityfocus.com/bid/45887
http://www.vupen.com/english/advisories/2011/0154
https://exchange.xforce.ibmcloud.com/vulnerabilities/64812

Input validation error in Sun Convergence - CVE-2010-4464

Detailed vulnerability description

How to mitigate CVE-2010-4464

Sources

Please verify you're human