ID CVE-2013-5771
Summary Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality and availability via unknown vectors.
References
Vulnerable Configurations
  • Oracle Database Server 12.1.0.1
    cpe:2.3:a:oracle:database_server:12.1.0.1
  • Oracle Database Server 11g 11.2.0.3
    cpe:2.3:a:oracle:database_server:11.2.0.3
  • cpe:2.3:a:oracle:database_server:11.2.0.2
  • Oracle Database Server 11g 11.1.0.7
    cpe:2.3:a:oracle:database_server:11.1.0.7
CVSS
Base: 6.4 (as of 16-10-2013 - 14:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE PARTIAL
nessus via4
NASL family Databases
NASL id ORACLE_RDBMS_CPU_OCT_2013.NASL
description The remote Oracle database server is missing the October 2013 Critical Patch Update (CPU). It is, therefore, affected by multiple security vulnerabilities in the following components : - Core RDBMS - Oracle Security service - XML Parser
last seen 2019-02-21
modified 2018-07-18
plugin id 70460
published 2013-10-16
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=70460
title Oracle Database Multiple Vulnerabilities (October 2013 CPU) (BEAST)
oval via4
accepted 2014-02-10T04:00:17.681-05:00
class vulnerability
contributors
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
definition_extensions
comment Oracle Database Server is installed
oval oval:org.mitre.oval:def:17171
description Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality and availability via unknown vectors.
family windows
id oval:org.mitre.oval:def:19209
status accepted
submitted 2013-10-24T16:31:26.748+04:00
title Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1
version 19
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
secunia 55322
Last major update 02-11-2013 - 23:34
Published 16-10-2013 - 11:55
Last modified 18-09-2017 - 21:36
Back to Top