ID |
CVE-2008-5436
|
Summary |
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect integrity and availability via unknown vectors. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:oracle:database_10g:10.1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_10g:10.1.0.5:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:database_10g:10.2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_10g:10.2.0.4:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:database_9i:9.2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_9i:9.2.0.8:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:database_9i:9.2.0.8:dv:*:*:*:*:*:*
cpe:2.3:a:oracle:database_9i:9.2.0.8:dv:*:*:*:*:*:*
|
CVSS |
Base: | 5.5 (as of 23-10-2012 - 02:56) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
SINGLE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:S/C:N/I:P/A:P
|
refmap
via4
|
|
saint
via4
|
bid | 33177 | description | Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow | title | weblogic_iis_connector_jsessionid | type | remote |
bid | 33177 | description | Oracle Database OLAP component ODCITABLESTART buffer overflow | id | database_oracle_version | osvdb | 51347 | title | oracle_olap_odcitablestart | type | remote |
bid | 33177 | description | Oracle Secure Backup login.php ora_osb_lcookie command execution | id | database_oracle_backupver | osvdb | 51343 | title | oracle_secure_backup_login_lcookie | type | remote |
bid | 33177 | description | Oracle Secure Backup login.php rbtool command injection | id | database_oracle_backupver | osvdb | 51342 | title | oracle_secure_backup_login_rbtool | type | remote |
bid | 33177 | description | Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow | id | database_oracle_backupndmpbo,database_oracle_backupver | osvdb | 51340 | title | oracle_secure_backup_ndmp_clientauth | type | remote |
|
Last major update |
23-10-2012 - 02:56 |
Published |
14-01-2009 - 01:30 |
Last modified |
23-10-2012 - 02:56 |