JVN Info.

Id
38524  
Name
JVNDB-2010-004309  
Title
IBM WebSphere Commerce における重要な情報を取得される脆弱性  
Summary
IBM WebSphere Commerce は、データベース内のデータを適切に暗号化しないため、重要な情報を取得される脆弱性が存在します。  
Nvdinfo
CVE-2009-2752  
Cvssv2
1.5  
Jvnurl
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-004309.html  
Published Date
2010-02-05  
Registered Date
2012-09-25  
Last Updated Date
2012-09-25  

Actions

Related Nessuslogs

Id Log ID Jvninfo Id Plugin ID CVE CVSS Risk Host Protocol Port Name Synopsis Description Solution See Also Plugin Output Actions
51445 H28_MUN_DWEB_Q4_172_16_240_seg.csv 38524 89668 CVE-2013-2461 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by a denial of service vulnerability in hostd-vmdb. A remote attacker can exploit this to cause a denial of service condition. Additionally, multiple vulnerabilities, including remote code execution vulnerabilities, exist in multiple Java Runtime Environment (JRE) components : - 2D - AWT - CORBA - Deployment - Hotspot - Install - JDBC - JMX - Libraries - Networking - Serialization - Serviceability - Sound Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2013-0012 http://www.nessus.org/u?a094a6d7 Version : ESX 4.0 Installed build : 208167 Fixed build : 1070634
52055 H28_MUN_DWEB_Q4_172_16_240_seg.csv 38524 89668 CVE-2013-2461 10 Critical 172.16.240.131 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by a denial of service vulnerability in hostd-vmdb. A remote attacker can exploit this to cause a denial of service condition. Additionally, multiple vulnerabilities, including remote code execution vulnerabilities, exist in multiple Java Runtime Environment (JRE) components : - 2D - AWT - CORBA - Deployment - Hotspot - Install - JDBC - JMX - Libraries - Networking - Serialization - Serviceability - Sound Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2013-0012 http://www.nessus.org/u?a094a6d7 Version : ESXi 4.1 Installed build : 800380 Fixed build : 1198252
57026 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 38524 89668 CVE-2013-2461 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by a denial of service vulnerability in hostd-vmdb. A remote attacker can exploit this to cause a denial of service condition. Additionally, multiple vulnerabilities, including remote code execution vulnerabilities, exist in multiple Java Runtime Environment (JRE) components : - 2D - AWT - CORBA - Deployment - Hotspot - Install - JDBC - JMX - Libraries - Networking - Serialization - Serviceability - Sound Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2013-0012 http://www.nessus.org/u?a094a6d7 Version : ESX 4.0 Installed build : 208167 Fixed build : 1070634
57631 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 38524 89668 CVE-2013-2461 10 Critical 172.16.240.131 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2013-0012) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by a denial of service vulnerability in hostd-vmdb. A remote attacker can exploit this to cause a denial of service condition. Additionally, multiple vulnerabilities, including remote code execution vulnerabilities, exist in multiple Java Runtime Environment (JRE) components : - 2D - AWT - CORBA - Deployment - Hotspot - Install - JDBC - JMX - Libraries - Networking - Serialization - Serviceability - Sound Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2013-0012 http://www.nessus.org/u?a094a6d7 Version : ESXi 4.1 Installed build : 800380 Fixed build : 1198252