| ID |
CVE-2008-2623
|
| Summary |
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors. Note 2 in Oracle Application Server Risk Matrix states "The versions in the matrix refer to standalone versions of JDeveloper." Therefore, Oracle Application Server was not included in the CPE configuration. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 2.1 (as of 23-10-2012 - 02:48) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
NONE |
NONE |
|
| cvss-vector
via4
|
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
| refmap
via4
|
|
| saint
via4
|
| bid | 33177 | | description | Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow | | title | weblogic_iis_connector_jsessionid | | type | remote |
| bid | 33177 | | description | Oracle Database OLAP component ODCITABLESTART buffer overflow | | id | database_oracle_version | | osvdb | 51347 | | title | oracle_olap_odcitablestart | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup login.php ora_osb_lcookie command execution | | id | database_oracle_backupver | | osvdb | 51343 | | title | oracle_secure_backup_login_lcookie | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup login.php rbtool command injection | | id | database_oracle_backupver | | osvdb | 51342 | | title | oracle_secure_backup_login_rbtool | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow | | id | database_oracle_backupndmpbo,database_oracle_backupver | | osvdb | 51340 | | title | oracle_secure_backup_ndmp_clientauth | | type | remote |
|
| Last major update |
23-10-2012 - 02:48 |
| Published |
14-01-2009 - 02:30 |
| Last modified |
23-10-2012 - 02:48 |
