Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-0347
HistoryJan 17, 2008 - 11:00 p.m.

CVE-2008-0347

2008-01-1723:00:00
[email protected]
web.nvd.nist.gov
39
oracle
ultra search
vulnerability
unknown impact
ocs01
nvd
wksys schema privileges

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.6 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.4%

JSON

Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10.1.2; Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; and Application Server 9.0.4.3 and 10.1.2.0.2; has unknown impact and local attack vectors, aka OCS01. NOTE: Oracle has not disputed a reliable claim that this issue is related to WKSYS schema privileges.

Affected configurations

NVD
Node
oracleapplication_serverMatch1.0.2.2
OR
oracleapplication_serverMatch9.0.4.3
OR
oracleapplication_serverMatch10.1.2.0.2
OR
oracleapplication_serverMatch10.1.2.1.0
OR
oracleapplication_serverMatch10.1.2.2.0
OR
oracleapplication_serverMatch10.1.3.0.0
OR
oracleapplication_serverMatch10.1.3.1.0
OR
oracleapplication_serverMatch10.1.3.3.0
OR
oracleapplication_server_9iMatch9.0.4.3
OR
oracleapplication_server_9iMatch10.1.2.0.2
OR
oraclecollaboration_suiteMatch10.1.2
OR
oracledatabase_serverMatch9.0.1.5fips
OR
oracledatabase_serverMatch9.2.0.8
OR
oracledatabase_serverMatch9.2.0.8dv
OR
oracledatabase_serverMatch10.1.0.5
OR
oracledatabase_serverMatch10.2.0.2
OR
oracledatabase_serverMatch10.2.0.3
OR
oracledatabase_serverMatch11.1.0.6
OR
oraclee-business_suiteMatch11.5.9
OR
oraclee-business_suiteMatch11.5.10
OR
oraclee-business_suiteMatch11.5.10.2
OR
oraclee-business_suiteMatch12.0.0
OR
oraclee-business_suiteMatch12.0.1
OR
oraclee-business_suiteMatch12.0.2
OR
oraclee-business_suiteMatch12.0.3
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.47
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.48
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.49

Related

cvelist 1
nvd 1
openvas 1
prion 1
nessus 2
cvelist
cvelist
CVE-2008-0347
2008-01-17 22:00:00
nvd
nvd
CVE-2008-0347
2008-01-17 23:00:00
openvas
openvas
Oracle Database Server and Application Server Ultra Search Component Unspecified Vulnerability
2011-12-07 00:00:00
prion
prion
Design/Logic Flaw
2008-01-17 23:00:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (January 2008 CPU)
2011-11-16 00:00:00
Oracle Application Server Multiple Vulnerabilities
2012-01-24 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.6 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.4%

JSON
Related for CVE-2008-0347
cvelist1nvd1openvas1prion1nessus2