Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.807042
Categoría:Databases
Título:Oracle Database Server Multiple Unspecified Vulnerabilities -06 Jan16
Resumen:This host is running Oracle Database Server; and is prone to multiple unspecified vulnerabilities.
Descripción:Summary:
This host is running Oracle Database Server
and is prone to multiple unspecified vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- An Unspecified vulnerability in the XML Developer's Kit for C component.

- An Unspecified vulnerability in the RDBMS Support Tools component.

- An Unspecified vulnerability in the XDB - XML Database component.

Vulnerability Impact:
Successfully exploitation will allow remote
authenticated and local attackers to affect confidentiality, integrity, and
availability via unknown vectors.

Affected Software/OS:
Oracle Database Server versions
11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2.

Solution:
Apply the patche from the referenced advisory.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:C/I:N/A:N

Referencia Cruzada: BugTraq ID: 72139
BugTraq ID: 75839
BugTraq ID: 74076
Common Vulnerability Exposure (CVE) ID: CVE-2014-6577
http://www.securityfocus.com/bid/72139
https://blog.netspi.com/advisory-xxe-injection-oracle-database-cve-2014-6577/
http://www.securitytracker.com/id/1031572
Common Vulnerability Exposure (CVE) ID: CVE-2015-4753
http://www.securityfocus.com/bid/75839
http://www.securitytracker.com/id/1032903
SuSE Security Announcement: SUSE-SU-2015:1353 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00003.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-0455
http://www.securitytracker.com/id/1032118
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.