Vulnerabilities > CVE-2008-2587 - Unspecified vulnerability in Oracle Advanced Replication, Database 9I and Database Server

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

oracle

nessus

NVD

Published: 2008-07-15

Updated: 2024-11-21

Summary

Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and local attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Database 9I 9.2.0.8 Oracle Database 9I 9.0.1.5 Oracle Advanced Replication * Oracle Database Server 10.2.0.3 Oracle Database Server 10.1.0.5	6

Nessus

NASL family	Databases
NASL id	ORACLE_RDBMS_CPU_JUL_2008.NASL
description	The remote Oracle database server is missing the July 2008 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Advanced Replication - Authentication - Core RDBMS - Data Pump - Database Scheduler - Instance Management - Oracle Spatial - Oracle Database Vault - Resource Manager
last seen	2020-06-02
modified	2011-11-16
plugin id	56061
published	2011-11-16
reporter	This script is Copyright (C) 2011-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/56061
title	Oracle Database Multiple Vulnerabilities (July 2008 CPU)
code	# # (C) Tenable Network Security, Inc. # include('compat.inc'); if (description) { script_id(56061); script_version("1.14"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/01"); script_cve_id( "CVE-2008-2587", "CVE-2008-2590", "CVE-2008-2591", "CVE-2008-2592", "CVE-2008-2600", "CVE-2008-2602", "CVE-2008-2603", "CVE-2008-2604", "CVE-2008-2605", "CVE-2008-2607", "CVE-2008-2608", "CVE-2008-2611", "CVE-2008-2613" ); script_bugtraq_id(30177); script_name(english:"Oracle Database Multiple Vulnerabilities (July 2008 CPU)"); script_summary(english:"Checks installed patch info"); script_set_attribute(attribute:"synopsis", value: "The remote database server is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The remote Oracle database server is missing the July 2008 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Advanced Replication - Authentication - Core RDBMS - Data Pump - Database Scheduler - Instance Management - Oracle Spatial - Oracle Database Vault - Resource Manager"); script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f2536cc4"); script_set_attribute(attribute:"solution", value: "Apply the appropriate patch according to the July 2008 Oracle Critical Patch Update advisory."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2008/07/15"); script_set_attribute(attribute:"patch_publication_date", value:"2008/07/15"); script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/16"); script_set_attribute(attribute:"plugin_type", value:"combined"); script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:database_server"); script_set_attribute(attribute:"agent", value:"all"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Databases"); script_copyright(english:"This script is Copyright (C) 2011-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("oracle_rdbms_query_patch_info.nbin", "oracle_rdbms_patch_info.nbin"); exit(0); } include("oracle_rdbms_cpu_func.inc"); ################################################################################ # JUL2008 patches = make_nested_array(); # RDBMS 11.1.0.6 patches["11.1.0.6"]["db"]["nix"] = make_array("patch_level", "11.1.0.6.3", "CPU", "7150417"); patches["11.1.0.6"]["db"]["win32"] = make_array("patch_level", "11.1.0.6.6", "CPU", "7210195"); patches["11.1.0.6"]["db"]["win64"] = make_array("patch_level", "11.1.0.6.6", "CPU", "7210197"); # RDBMS 10.1.0.5 patches["10.1.0.5"]["db"]["nix"] = make_array("patch_level", "10.1.0.5.11", "CPU", "7154097"); patches["10.1.0.5"]["db"]["win32"] = make_array("patch_level", "10.1.0.5.26", "CPU", "7047034"); # RDBMS 10.2.0.4 patches["10.2.0.4"]["db"]["nix"] = make_array("patch_level", "10.2.0.4.0.1", "CPU", "7150470"); patches["10.2.0.4"]["db"]["win32"] = make_array("patch_level", "10.2.0.4.5", "CPU", "7218676"); patches["10.2.0.4"]["db"]["win64"] = make_array("patch_level", "10.2.0.4.5", "CPU", "7218677"); # RDBMS 10.2.0.3 patches["10.2.0.3"]["db"]["nix"] = make_array("patch_level", "10.2.0.3.7", "CPU", "7150622"); patches["10.2.0.3"]["db"]["win32"] = make_array("patch_level", "10.2.0.3.25", "CPU", "7252496"); patches["10.2.0.3"]["db"]["win64"] = make_array("patch_level", "10.2.0.3.25", "CPU", "7252498"); # RDBMS 10.2.0.2 patches["10.2.0.2"]["db"]["nix"] = make_array("patch_level", "10.2.0.2.10", "CPU", "7154083"); check_oracle_database(patches:patches);

Summary

Vulnerable Configurations

Nessus

References