1. CVE-Search
  2. CVE-2005-3445
ID CVE-2005-3445
Summary Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:application_server:1.0.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:1.0.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:9.0.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:9.0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:9.0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:9.0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:8.1.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:8.1.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:9.2.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:9.2.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:9.2.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:9.2.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:9.2.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:9.2.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:10.1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:10.1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:database_server:10.1.0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:10.1.0.4.2:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 23-10-2012 - 01:51)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 15134
cert TA05-292A
cert-vn
  • VU#210524
  • VU#890940
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2005-090497.html
secunia 17250
saint via4
bid 15134
description Oracle Security Component sys.pbsde buffer overflow
id database_oracle_version
osvdb 20612
title oracle_security_pbsde
type remote
Last major update 23-10-2012 - 01:51
Published 02-11-2005 - 11:03
Last modified 23-10-2012 - 01:51
Back to Top