Lucene search

[email protected]CVE-2006-5357

HistoryOct 18, 2006 - 1:07 a.m.

CVE-2006-5357

2006-10-1801:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

oracle

http server

oracle application server

vulnerability

remote attack

cve-2006-5357

nvd

6.2 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.7%

JSON

Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 10.1.2.0.1, 10.1.2.0.2, and 10.1.2.1.0 has unknown impact and remote attack vectors related to the PHP Module, aka Vuln# OHS03.

CPENameOperatorVersion
oracle:application_serveroracle application servereq10.1.2.0.2
oracle:application_serveroracle application servereq10.1.2.1.0
oracle:application_serveroracle application servereq10.1.2.0.1

CPE	Name	Operator	Version
oracle:application_server	oracle application server	eq	10.1.2.0.2
oracle:application_server	oracle application server	eq	10.1.2.1.0
oracle:application_server	oracle application server	eq	10.1.2.0.1

References

secunia.com/advisories/22396

securitytracker.com/id?1017077

www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html

www.red-database-security.com/advisory/oracle_cpu_oct_2006.html

www.securityfocus.com/archive/1/449711/100/0/threaded

www.securityfocus.com/bid/20588

www.us-cert.gov/cas/techalerts/TA06-291A.html

www.vupen.com/english/advisories/2006/4065

6.2 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.7%

JSON

Related for CVE-2006-5357

nessus2