ID CVE-2010-0866
Summary Unspecified vulnerability in the JavaVM component in Oracle Database 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:database_server:11.1.0.7
  • cpe:2.3:a:oracle:database_server:11.2.0.1
CVSS
Base: 6.5 (as of 14-04-2010 - 12:57)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
metasploit via4
nessus via4
NASL family Databases
NASL id ORACLE_RDBMS_CPU_APR_2010.NASL
description The remote Oracle database server is missing the April 2010 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components : - Core RDBMS - JavaVM - Change Data Capture - Audit
last seen 2019-02-21
modified 2018-11-15
plugin id 45626
published 2010-04-26
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=45626
title Oracle Database Multiple Vulnerabilities (April 2010 CPU)
refmap via4
cert TA10-103B
confirm http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html
Last major update 22-10-2012 - 23:20
Published 13-04-2010 - 18:30
Back to Top