Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2408

Overview

Vulnerability Score 6.6 6.6
CVE Id CVE-2014-2408
Last Modified 16 Apr 2014 01:56:25
Published 15 Apr 2014 09:55:10
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication SINGLE_INSTANCE

CVE-2014-2408

Summary

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to the "Grant Any Object Privilege."

Vulnerable Systems

Application

  • Oracle Database Server 11.1.0.7

  • Oracle Database Server 11.2.0.3

  • Oracle Database Server 11.2.0.4

  • Oracle Database Server 12.1.0.1


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html


Last Updated: 27 May 2016 11:04:58