9.0.4.3

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

oracle

NVD

Published: 2009-09-14

Updated: 2021-07-28

Summary

Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3 and 10.1.2.2 allows remote authenticated users to affect confidentiality via unknown vectors, aka AS06.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Application Server 9.0.4.3 Oracle Application Server 10.1.2.2	2

Saint

bid	27229
description	Oracle XDB component PITRIG_TRUNCATE buffer overflow
id	database_oracle_version
osvdb	40300
title	oracle_xdb_pitrig_truncate
type	remote

References

http://secunia.com/advisories/28556
http://www.vupen.com/english/advisories/2008/0180
http://www.securityfocus.com/bid/27229
http://www.us-cert.gov/cas/techalerts/TA08-017A.html
http://www.vupen.com/english/advisories/2008/0150
http://www.osvdb.org/40298
http://secunia.com/advisories/28518
http://securitytracker.com/id?1019218
http://marc.info/?l=bugtraq&m=120058413923005&w=2
http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html