| ID |
CVE-2008-5440
|
| Summary |
Unspecified vulnerability in the TimesTen Data Server component in Oracle Database 7.0.5.0.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this is a format string vulnerability via the msg parameter in the evtdump CGI module. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 7.5 (as of 11-10-2018 - 20:55) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
|
| saint
via4
|
| bid | 33177 | | description | Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow | | title | weblogic_iis_connector_jsessionid | | type | remote |
| bid | 33177 | | description | Oracle Database OLAP component ODCITABLESTART buffer overflow | | id | database_oracle_version | | osvdb | 51347 | | title | oracle_olap_odcitablestart | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup login.php ora_osb_lcookie command execution | | id | database_oracle_backupver | | osvdb | 51343 | | title | oracle_secure_backup_login_lcookie | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup login.php rbtool command injection | | id | database_oracle_backupver | | osvdb | 51342 | | title | oracle_secure_backup_login_rbtool | | type | remote |
| bid | 33177 | | description | Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow | | id | database_oracle_backupndmpbo,database_oracle_backupver | | osvdb | 51340 | | title | oracle_secure_backup_ndmp_clientauth | | type | remote |
|
| Last major update |
11-10-2018 - 20:55 |
| Published |
14-01-2009 - 01:30 |
| Last modified |
11-10-2018 - 20:55 |
