Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.802527
Categoría:Databases
Título:Oracle Database Server Multiple Unspecified Vulnerabilities
Resumen:This host is running Oracle database and is prone to multiple; unspecified vulnerabilities.
Descripción:Summary:
This host is running Oracle database and is prone to multiple
unspecified vulnerabilities.

Vulnerability Insight:
The flaws are due to unspecified errors in the multiple components.

Vulnerability Impact:
An unspecified impact and attack vectors.

Affected Software/OS:
Oracle Database server versions 8.1.7.4, 9.0.1.5, 9.2.0.6, 10.1.0.3, 9.2.0.7,
10.1.0.5, 10.2.0.1, 9.0.1.5 FIPS and 10.1.0.4

Solution:
Apply the patch from the referenced advisory.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 16287
BugTraq ID: 16384
BugTraq ID: 16294
Common Vulnerability Exposure (CVE) ID: CVE-2006-0256
http://www.securityfocus.com/bid/16287
CERT/CC vulnerability note: VU#545804
http://www.kb.cert.org/vuls/id/545804
http://securitytracker.com/id?1015499
http://secunia.com/advisories/18493
http://secunia.com/advisories/18608
http://www.vupen.com/english/advisories/2006/0243
http://www.vupen.com/english/advisories/2006/0323
Common Vulnerability Exposure (CVE) ID: CVE-2006-0257
http://www.osvdb.org/22540
XForce ISS Database: oracle-january2006-update(24321)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24321
Common Vulnerability Exposure (CVE) ID: CVE-2006-0258
Common Vulnerability Exposure (CVE) ID: CVE-2006-0259
http://www.osvdb.org/22544
Common Vulnerability Exposure (CVE) ID: CVE-2006-0260
http://www.osvdb.org/22543
http://www.osvdb.org/22637
http://www.osvdb.org/22643
Common Vulnerability Exposure (CVE) ID: CVE-2006-0261
Bugtraq: 20060117 Oracle Database 10g Rel. 2 - Event 10053 logs TDE wallet password in cleartext (Google Search)
http://www.securityfocus.com/archive/1/422255/30/7430/threaded
http://www.red-database-security.com/advisory/oracle_tde_wallet_password.html
XForce ISS Database: oracle-masterkey-plaintext(24168)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24168
Common Vulnerability Exposure (CVE) ID: CVE-2006-0262
Common Vulnerability Exposure (CVE) ID: CVE-2006-0263
Cert/CC Advisory: TA06-018A
http://www.us-cert.gov/cas/techalerts/TA06-018A.html
CERT/CC vulnerability note: VU#870172
http://www.kb.cert.org/vuls/id/870172
http://www.osvdb.org/22547
http://www.osvdb.org/22550
http://www.osvdb.org/22551
Common Vulnerability Exposure (CVE) ID: CVE-2006-0265
http://www.red-database-security.com/advisory/oracle_cpu_jan_2006.html
http://www.osvdb.org/22555
http://www.osvdb.org/22639
http://www.osvdb.org/22640
http://www.osvdb.org/22641
http://www.osvdb.org/22642
Common Vulnerability Exposure (CVE) ID: CVE-2006-0266
Common Vulnerability Exposure (CVE) ID: CVE-2006-0267
Common Vulnerability Exposure (CVE) ID: CVE-2006-0268
Common Vulnerability Exposure (CVE) ID: CVE-2006-0269
http://www.osvdb.org/22563
Common Vulnerability Exposure (CVE) ID: CVE-2006-0270
Bugtraq: 20060117 Oracle Database 10g Rel. 2- Transparent Data Encryption plaintext masterkey in SGA (Google Search)
http://www.securityfocus.com/archive/1/422262/30/7400/threaded
http://www.red-database-security.com/advisory/oracle_tde_unencrypted_sga.html
XForce ISS Database: oracle-sga-masterkey-plaintext(24186)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24186
Common Vulnerability Exposure (CVE) ID: CVE-2006-0271
http://www.osvdb.org/22566
Common Vulnerability Exposure (CVE) ID: CVE-2006-0272
CERT/CC vulnerability note: VU#891644
http://www.kb.cert.org/vuls/id/891644
http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0893.html
http://www.argeniss.com/research/ARGENISS-ADV-010601.txt
http://www.integrigy.com/info/IntegrigySecurityAnalysis-CPU0106.pdf
XForce ISS Database: oracle-xdbdbmx-xmlschema-bo(24376)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24376
Common Vulnerability Exposure (CVE) ID: CVE-2006-0551
CERT/CC vulnerability note: VU#983340
http://www.kb.cert.org/vuls/id/983340
http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html
Common Vulnerability Exposure (CVE) ID: CVE-2006-0547
CERT/CC vulnerability note: VU#871756
http://www.kb.cert.org/vuls/id/871756
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041464.html
http://www.imperva.com/application_defense_center/papers/oracle-dbms-01172006.html
XForce ISS Database: oracle-login-command-execute(24184)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24184
Common Vulnerability Exposure (CVE) ID: CVE-2006-0548
CERT/CC vulnerability note: VU#150332
http://www.kb.cert.org/vuls/id/150332
Common Vulnerability Exposure (CVE) ID: CVE-2006-0549
CERT/CC vulnerability note: VU#629316
http://www.kb.cert.org/vuls/id/629316
http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_metadata_util.html
Common Vulnerability Exposure (CVE) ID: CVE-2006-0552
http://www.osvdb.org/22549
Common Vulnerability Exposure (CVE) ID: CVE-2006-0586
http://www.securityfocus.com/bid/16294
Bugtraq: 20060117 Oracle Database 10g Rel. 1 - SQL Injection in SYS.KUPV$FT (Google Search)
http://www.securityfocus.com/archive/1/422423/30/7370/threaded
Bugtraq: 20060117 Oracle Database 10g Rel. 1 - SQL Injection in SYS.KUPV$FT_INT (Google Search)
http://www.securityfocus.com/archive/1/422424/30/7370/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041499.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041498.html
http://www.red-database-security.com/advisory/oracle_sql_injection_kupv$ft.html
http://www.red-database-security.com/advisory/oracle_sql_injection_kupv$ft_int.html
http://www.osvdb.org/22839
http://www.osvdb.org/22840
XForce ISS Database: oracle-syskupv$ft-sql-injection(24195)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24195
XForce ISS Database: oracle-syskupv$ftint-sql-injection(24197)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24197
CopyrightCopyright (c) 2011 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.