Vulnerabilities > CVE-2005-3460 - Multiple vulnerability in Oracle products

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

oracle

critical

NVD

Published: 2005-11-02

Updated: 2012-10-23

Summary

Unspecified vulnerability in Oracle Agent in Oracle Enterprise Manager 9.0.4.1 up to 10.1.0.4 has unknown impact and attack vectors, as identified by Oracle Vuln# EM01.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle 10G Enterprise Manager Database Control 10.1.0.3 Oracle 10G Enterprise Manager Database Control 10.1.0.4 Oracle Enterprise Manager Application Server Control 9.0.4.1 Oracle Enterprise Manager Application Server Control 9.0.4.2	4

Saint

bid 15146
description Oracle Enterprise Manager Agent buffer overflow
id database_oracle_oem
osvdb 20664
title oracle_emagent
type remote
bid 15134
description Oracle Security Component sys.pbsde buffer overflow
id database_oracle_version
osvdb 20612
title oracle_security_pbsde
type remote

bid	15146
description	Oracle Enterprise Manager Agent buffer overflow
id	database_oracle_oem
osvdb	20664
title	oracle_emagent
type	remote

bid	15134
description	Oracle Security Component sys.pbsde buffer overflow
id	database_oracle_version
osvdb	20612
title	oracle_security_pbsde
type	remote

Summary

Vulnerable Configurations

Saint

References