Lucene search

[email protected]CVE-2006-5346

HistoryOct 18, 2006 - 1:07 a.m.

CVE-2006-5346

2006-10-1801:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

oracle

http server

vulnerability

htdigest

nvd

cve-2006-5346

6.2 Medium

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, as used in Oracle Collaboration Suite 9.0.4.2 and Oracle E-Business Suite and Applications 11.5.10CU2, has unknown impact and remote attack vectors related to htdigest, aka Vuln# OHS02.

CPENameOperatorVersion
oracle:e-business_suiteoracle e-business suiteeq11.5.10.2
oracle:collaboration_suiteoracle collaboration suiteeq9.0.4.2
oracle:http_serveroracle http servereq9.2.0.7

CPE	Name	Operator	Version
oracle:e-business_suite	oracle e-business suite	eq	11.5.10.2
oracle:collaboration_suite	oracle collaboration suite	eq	9.0.4.2
oracle:http_server	oracle http server	eq	9.2.0.7

References

secunia.com/advisories/22396

securitytracker.com/id?1017077

www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html

www.red-database-security.com/advisory/oracle_cpu_oct_2006.html

www.securityfocus.com/archive/1/449711/100/0/threaded

www.securityfocus.com/bid/20588

www.us-cert.gov/cas/techalerts/TA06-291A.html

www.vupen.com/english/advisories/2006/4065

6.2 Medium

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON

Related for CVE-2006-5346

nessus1