Vulnerabilities > CVE-2007-3858 - Remote Security vulnerability in Oracle Database Server 10.2.0.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple unspecified vulnerabilities in Oracle Database 10.2.0.3 allow remote authenticated users to have an unknown impact via (1) EXFSYS.DBMS_RLMGR_UTL in Rules Manager (DB11) and (2) Program Interface (DB13). As the vulnerability impact is unspecified, the impact has been set to a default value of "Obtain Other Access."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | Databases |
NASL id | ORACLE_RDBMS_CPU_JUL_2007.NASL |
description | The remote Oracle database server is missing the July 2007 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components : - Advanced Queuing - DataGuard - JavaVM - Oracle Data Mining - Oracle Text - PL/SQL - Rules Manager - Spatial - SQL Compiler |
last seen | 2020-06-02 |
modified | 2011-11-16 |
plugin id | 56057 |
published | 2011-11-16 |
reporter | This script is Copyright (C) 2011-2020 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/56057 |
title | Oracle Database Multiple Vulnerabilities (July 2007 CPU) |
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143
- http://secunia.com/advisories/26114
- http://secunia.com/advisories/26166
- http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_July_2007_Analysis.pdf
- http://www.oracle.com/technetwork/topics/security/cpujul2007-087014.html
- http://www.red-database-security.com/advisory/oracle_cpu_jul_2007.html
- http://www.securitytracker.com/id?1018415
- http://www.us-cert.gov/cas/techalerts/TA07-200A.html
- http://www.vupen.com/english/advisories/2007/2562
- http://www.vupen.com/english/advisories/2007/2635
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35490