Vulnerabilities > CVE-2005-2293 - Incomplete Cleanup vulnerability in Oracle Forms Builder 9.0.4

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

oracle

CWE-459

nessus

NVD

Published: 2005-07-18

Updated: 2024-02-08

Summary

Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is not deleted after it is used, which allows local users to obtain sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Forms Builder 9.0.4	1

Common Weakness Enumeration (CWE)

CWE-459 - Incomplete Cleanup

Nessus

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_118828.NASL
description	Sun Management Center 3.5.1: Solaris 8 Oracle Patch. Date this patch was last updated by Sun : Jun/02/05
last seen	2020-06-01
modified	2020-06-02
plugin id	23409
published	2006-11-06
reporter	This script is Copyright (C) 2006-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/23409
title	Solaris 8 (sparc) : 118828-04

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_118829.NASL
description	Sun Management Center 3.5.1: Solaris 9 Oracle Patch. Date this patch was last updated by Sun : Jun/02/05
last seen	2020-06-01
modified	2020-06-02
plugin id	23549
published	2006-11-06
reporter	This script is Copyright (C) 2006-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/23549
title	Solaris 9 (sparc) : 118829-04

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References