Lucene search

[email protected]CVE-2006-5355

HistoryOct 18, 2006 - 1:07 a.m.

CVE-2006-5355

2006-10-1801:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-5355

oracle

single sign-on

application server

collaboration suite

e-business suite

remote attack

nvd

6.5 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.7%

JSON

Unspecified vulnerability in Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.1.0, Collaboration Suite 9.0.4.2 and 10.1.2, and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and remote attack vectors, aka Vuln# SSO01.

CPENameOperatorVersion
oracle:application_serveroracle application servereq10.1.2.0.2
oracle:application_serveroracle application servereq10.1.2.1.0
oracle:e-business_suiteoracle e-business suiteeq11.5.10.2
oracle:application_serveroracle application servereq9.0.4.3
oracle:collaboration_suiteoracle collaboration suiteeq9.0.4.2
oracle:collaboration_suiteoracle collaboration suiteeq10.1.2

CPE	Name	Operator	Version
oracle:application_server	oracle application server	eq	10.1.2.0.2
oracle:application_server	oracle application server	eq	10.1.2.1.0
oracle:e-business_suite	oracle e-business suite	eq	11.5.10.2
oracle:application_server	oracle application server	eq	9.0.4.3
oracle:collaboration_suite	oracle collaboration suite	eq	9.0.4.2
oracle:collaboration_suite	oracle collaboration suite	eq	10.1.2

References

secunia.com/advisories/22396

securitytracker.com/id?1017077

www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html

www.red-database-security.com/advisory/oracle_cpu_oct_2006.html

www.securityfocus.com/archive/1/449711/100/0/threaded

www.securityfocus.com/bid/20588

www.us-cert.gov/cas/techalerts/TA06-291A.html

www.vupen.com/english/advisories/2006/4065

6.5 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.7%

JSON

Related for CVE-2006-5355

nessus1