|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Databases >> Oracle Database Multiple Remote Vulnerabilities Vulnerability Assessment Details
|
Oracle Database Multiple Remote Vulnerabilities |
||
|
Checks for multiple remote vulnerabilities in Oracle Database Detailed Explanation for this Vulnerability Assessment Summary : The remote database server suffers from multiple flaws. Description : According to its version number, the installation of Oracle on the remote host is reportedly subject to multiple vulnerabilities, some of which don't require authentication. They may permit a possible hacker to craft SQL queries such that they would be able to retrieve any file on the system and potentially retrieve and/or modify confidential data on the target's Oracle server. Solution : http://www.red-database-security.com/advisory/oracle_htmldb_css.html http://www.red-database-security.com/advisory/oracle_htmldb_plaintext_password.html http://www.oracle.com/technology/deploy/security/pdf/cpuapr2005.pdf Risk Factor : High / CVSS Base Score : 8 (AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N) Networks Security ID: 13145, 13144, 13139, 13238, 13236, 13235, 13234, 13239, 15031, 15033 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security |
||
|
Servers |
|
||
|
No Discussions have been posted on this vulnerability. |