CVE Vulnerability

CVE-2007-3857

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 allow remote authenticated users to have an unknown impact via (a) the Oracle Text component, including (1) unspecified vectors (DB05), (2) CTXSYS.DRVXMD (DB06), (3) CTXSYS.DRI_MOVE_CTXSYS (DB07), (4) CTXSYS.DRVXMD (DB08), and (b) JavaVM (DB14).

6.5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8 / Impact : 6.4

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

Scope

References
Link Resource
http://www.red-database-security.com/advisory/oracle_cpu_jul_2007.html
http://secunia.com/advisories/26114 Vendor Advisory
http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_July_2007_Analysis.pdf
http://www.us-cert.gov/cas/techalerts/TA07-200A.html US Government Resource
http://www.securitytracker.com/id?1018415
http://secunia.com/advisories/26166
http://www.vupen.com/english/advisories/2007/2562
http://www.vupen.com/english/advisories/2007/2635
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143
http://www.oracle.com/technetwork/topics/security/cpujul2007-087014.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/35490
Configurations

Configuration 1

cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
Information

Published : 2007-07-18 07:30

Updated : 2017-07-29 01:32

NVD link : CVE-2007-3857

Mitre link : CVE-2007-3857

Products Affected
No products.
CWE
NVD-CWE-Other