CVE-2007-5531

Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://marc.info/?l=bugtraq&m=119332677525918&w=2	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=119332677525918&w=2	Mailing List Third Party Advisory
http://secunia.com/advisories/27251	Third Party Advisory Vendor Advisory
http://secunia.com/advisories/27409	Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html	Vendor Advisory
http://www.securitytracker.com/id?1018823	Third Party Advisory VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-290A.html	Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2007/3524	Permissions Required
http://www.vupen.com/english/advisories/2007/3626	Permissions Required
http://marc.info/?l=bugtraq&m=119332677525918&w=2	Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=119332677525918&w=2	Mailing List Third Party Advisory
http://secunia.com/advisories/27251	Third Party Advisory Vendor Advisory
http://secunia.com/advisories/27409	Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html	Vendor Advisory
http://www.securitytracker.com/id?1018823	Third Party Advisory VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-290A.html	Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2007/3524	Permissions Required
http://www.vupen.com/english/advisories/2007/3626	Permissions Required

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:application_server:-:::::::*
	cpe:2.3:a:oracle:database_server:10.2.0.3:::::::*
	cpe:2.3:a:oracle:enterprise_manager:10.1.0.6:::::::*

History

21 Nov 2024, 00:38

Type	Values Removed	Values Added
References	~~() http://marc.info/?l=bugtraq&m=119332677525918&w=2 - Mailing List, Third Party Advisory~~	() http://marc.info/?l=bugtraq&m=119332677525918&w=2 - Mailing List, Third Party Advisory
References	~~() http://secunia.com/advisories/27251 - Third Party Advisory, Vendor Advisory~~	() http://secunia.com/advisories/27251 - Third Party Advisory, Vendor Advisory
References	~~() http://secunia.com/advisories/27409 - Third Party Advisory~~	() http://secunia.com/advisories/27409 - Third Party Advisory
References	~~() http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html - Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html - Vendor Advisory
References	~~() http://www.securitytracker.com/id?1018823 - Third Party Advisory, VDB Entry~~	() http://www.securitytracker.com/id?1018823 - Third Party Advisory, VDB Entry
References	~~() http://www.us-cert.gov/cas/techalerts/TA07-290A.html - Third Party Advisory, US Government Resource~~	() http://www.us-cert.gov/cas/techalerts/TA07-290A.html - Third Party Advisory, US Government Resource
References	~~() http://www.vupen.com/english/advisories/2007/3524 - Permissions Required~~	() http://www.vupen.com/english/advisories/2007/3524 - Permissions Required
References	~~() http://www.vupen.com/english/advisories/2007/3626 - Permissions Required~~	() http://www.vupen.com/english/advisories/2007/3626 - Permissions Required

Information

Published : 2007-10-17 23:17

Updated : 2024-11-21 00:38

NVD link : CVE-2007-5531

Mitre link : CVE-2007-5531

CVE.ORG link : CVE-2007-5531

JSON object : View

Products Affected

oracle

application_server
database_server
enterprise_manager

CWE

NVD-CWE-noinfo

10.0 /10