Vulnerabilities > CVE-2011-3512 - SQL Injection vulnerability in Oracle Database
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
Nessus
| NASL family | Databases |
| NASL id | ORACLE_RDBMS_CPU_OCT_2011.NASL |
| description | The remote Oracle database server is missing the October 2011 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components : - Oracle Text - Application Express - Core RDBMS - Database Vault |
| last seen | 2020-06-02 |
| modified | 2011-10-26 |
| plugin id | 56653 |
| published | 2011-10-26 |
| reporter | This script is Copyright (C) 2011-2020 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/56653 |
| title | Oracle Database Multiple Vulnerabilities (October 2011 CPU) |