we track for your security since 1999

vulnerabilities

The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.

recent vulnerabilities

tracked products

RSS feed

vulnerability

vulnerability note CVE-2011-3565 CVE-2011-3570 CVE-2011-3573

Oracle Communications Unified: several vulnerabilities of January 2012

Synthesis of the vulnerability

Several vulnerabilities of Oracle Communications Unified are corrected by the CPU of January 2012.

Severity: 2/4.
Creation date: 18/01/2012.

Impacted products

Oracle Communications

Description of the vulnerability

A Critical Patch Update corrects several vulnerabilities of Oracle Communications Unified.

An attacker can use a vulnerability of Calendar Server, in order to obtain information, to alter information, or to create a denial of service. [severity:2/4; BID-51491, CVE-2011-3565, >]

An attacker can use a vulnerability of Calendar Server, in order to create a denial of service. [severity:2/4; BID-51496, CVE-2011-3573, >]

An attacker can use a vulnerability of Calendar Server, in order to obtain or alter information. [severity:2/4; BID-51489, CVE-2011-3574, >]

An attacker can use a vulnerability of Calendar Server, in order to obtain information. [severity:1/4; BID-51495, CVE-2011-3570, >]

Share this bulletin

Complete Vigil@nce bulletin

Oracle Communications Unified: several vulnerabilities of January 2012

Characteristics

Title: Oracle Communications Unified: several vulnerabilities of January 2012.
Keywords: 2012 CPU Calendar Communications Critical January Oracle Patch Server Unified Update several vulnerabilities.
Identifiers: BID-51489, BID-51491, BID-51495, BID-51496, cpujan2012, CVE-2011-3565, CVE-2011-3570, CVE-2011-3573, CVE-2011-3574, VIGILANCE-VUL-11299.

Information sources

Publications and announces
Source example: Oracle Critical Patch Update Advisory - January 2012

Solutions for this vulnerability

Patch or workaround

Supplements

Vulnerability : CVE-2011-3565

An attacker can use a vulnerability of Calendar Server, in order to obtain information, to alter information, or to create a denial of service.
Severity: 2/4.
Identifiers: BID-51491, CVE-2011-3565.

Vulnerability : CVE-2011-3573

An attacker can use a vulnerability of Calendar Server, in order to create a denial of service.
Severity: 2/4.
Identifiers: BID-51496, CVE-2011-3573.

Vulnerability : CVE-2011-3574

An attacker can use a vulnerability of Calendar Server, in order to obtain or alter information.
Severity: 2/4.
Identifiers: BID-51489, CVE-2011-3574.

Vulnerability : CVE-2011-3570

An attacker can use a vulnerability of Calendar Server, in order to obtain information.
Severity: 1/4.
Identifiers: BID-51495, CVE-2011-3570.

Computer vulnerabilities tracking service

Vigil@nce provides an application vulnerability patch. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system. The technology watch team tracks security threats targeting the computer system.