 |
|
|
Family: Databases --> Category: infos
Oracle Database Multiple Remote Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for multiple remote vulnerabilities in Oracle Database
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote database server suffers from multiple flaws.
Description :
According to its version number, the installation of Oracle on the
remote host is reportedly subject to multiple vulnerabilities, some of
which don't require authentication. They may allow a possible hacker to craft
SQL queries such that they would be able to retrieve any file on the
system and potentially retrieve and/or modify confidential data on the
target's Oracle server.
Solution :
http://www.red-database-security.com/advisory/oracle_htmldb_css.html
http://www.red-database-security.com/advisory/oracle_htmldb_plaintext_password.html
http://www.oracle.com/technology/deploy/security/pdf/cpuapr2005.pdf
Risk Factor :
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
|
|
|
|
