| ID |
CVE-2007-6480
|
| Summary |
The Oracle database component in Sun Management Center (Sun MC) 3.6.1, 3.6, and 3.5 Update 1 has a default account, which allows remote attackers to obtain database access and execute arbitrary code. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
-
cpe:2.3:a:sun:management\+center:3.5_update_1:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:management\+center:3.5_update_1:*:sparc:*:*:*:*:*
-
cpe:2.3:a:sun:management\+center:3.6:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:management\+center:3.6:*:sparc:*:*:*:*:*
-
cpe:2.3:a:sun:management\+center:3.6.1:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:management\+center:3.6.1:*:sparc:*:*:*:*:*
-
cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*
-
cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 9.4 (as of 30-10-2018 - 16:25) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
COMPLETE |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:C/I:C/A:N
|
| refmap
via4
|
| bid | 26948 | | osvdb | 39563 | | sectrack | 1019119 | | secunia | 28151 | | sunalert | | | vupen | ADV-2007-4268 | | xf | sunmc-smcorau-unauthorized-access(39137) |
|
| Last major update |
30-10-2018 - 16:25 |
| Published |
20-12-2007 - 20:46 |
| Last modified |
30-10-2018 - 16:25 |
