|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Databases >> Oracle 10g DBMS_SCHEDULER Privilege Escalation Vulnerability Vulnerability Assessment Details
|
Oracle 10g DBMS_SCHEDULER Privilege Escalation Vulnerability |
||
|
Checks for DBMS_SCHEDULER privilege escalation vulnerability in Oracle 10g Detailed Explanation for this Vulnerability Assessment Summary : The remote database server is affected by a privilege escalation issue. Description : The remote host is running a version of Oracle 10g that, according to its version number, permits a user with CREATE job rights to switch the session_user to SYS, which could permit privilege escalation. See also : http://www.nessus.org/u?94ef874d Solution : Apply the 10.0.1.4 patch set for Oracle 10g. Risk Factor : Low / CVSS Base Score : 1 (AV:R/AC:L/Au:R/C:N/A:N/I:P/B:N) Networks Security ID: 13509 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security |
||
|
Switches |
|
||
|
No Discussions have been posted on this vulnerability. |