Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3445

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-3445
Last Modified 22 Oct 2012 09:51:25
Published 02 Nov 2005 06:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3445

Summary

Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05.

Vulnerable Systems

Application

  • Oracle Application Server 1.0.2.2

  • Oracle Application Server 10.1.2.0.0

  • Oracle Application Server 10.1.2.0.1

  • Oracle Application Server 10.1.2.0.2

  • Oracle Application Server 9.0.2.3

  • Oracle Application Server 9.0.3.1

  • Oracle Application Server 9.0.4.1

  • Oracle Application Server 9.0.4.2

  • Oracle Database Server 10.1.0.3

  • Oracle Database Server 10.1.0.4

  • Oracle Database Server 10.1.0.4.2

  • Oracle Database Server 8.1.7.4

  • Oracle Database Server 9.2.0.5

  • Oracle Database Server 9.2.0.6

  • Oracle Database Server 9.2.0.7


References

CERT - TA05-292A

CERT-VN - VU#890940

CERT-VN - VU#210524

CONFIRM - http://www.oracle.com/technology/deploy/security/pdf/cpuoct2005.html

BID - 15134

SECUNIA - 17250

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuoct2005-090497.html


Last Updated: 27 May 2016 10:53:40