Lucene search
Copyright (C) 2018 Greenbone AGOPENVAS:1361412562310812797HistoryMar 07, 2018 - 12:00 a.m.
Oracle Database Server Multiple Unspecified Vulnerabilities-03 (Mar 2018)
2018-03-0700:00:00
Copyright (C) 2018 Greenbone AG
plugins.openvas.org
14
6.3 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.4%
Oracle Database Server is prone to multiple unspecified security vulnerabilities.
# SPDX-FileCopyrightText: 2018 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:oracle:database_server";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.812797");
script_version("2024-02-20T05:05:48+0000");
script_cve_id("CVE-2011-2248", "CVE-2011-0835", "CVE-2011-0880", "CVE-2011-0838",
"CVE-2011-0832");
script_tag(name:"cvss_base", value:"6.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_tag(name:"last_modification", value:"2024-02-20 05:05:48 +0000 (Tue, 20 Feb 2024)");
script_tag(name:"creation_date", value:"2018-03-07 15:14:30 +0530 (Wed, 07 Mar 2018)");
script_name("Oracle Database Server Multiple Unspecified Vulnerabilities-03 (Mar 2018)");
script_tag(name:"summary", value:"Oracle Database Server is prone to multiple unspecified security vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Multiple flaws are due to multiple
unspecified errors in components 'Core RDBMS' and 'SQL Performance Advisories/UIs'.");
script_tag(name:"impact", value:"Successfully exploitation will allow remote
attackers to affect confidentiality, integrity, and availability via unknown
vectors.");
script_tag(name:"affected", value:"Oracle Database Server versions 11.1.0.7,
11.2.0.1, 11.2.0.2");
script_tag(name:"solution", value:"Apply the patche from the referenced advisory.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"remote_banner_unreliable");
script_xref(name:"URL", value:"https://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html");
script_copyright("Copyright (C) 2018 Greenbone AG");
script_category(ACT_GATHER_INFO);
script_family("Databases");
script_dependencies("oracle_tnslsnr_version.nasl");
script_mandatory_keys("OracleDatabaseServer/installed");
exit(0);
}
include("version_func.inc");
include("host_details.inc");
if(!dbport = get_app_port(cpe:CPE)){
exit(0);
}
if(!infos = get_app_version_and_location(cpe:CPE, port:dbport, exit_no_version:TRUE)) exit(0);
dbVer = infos['version'];
path = infos['location'];
affected = make_list('11.1.0.7', '11.2.0.1', '11.2.0.2');
foreach version (affected)
{
if(dbVer == version)
{
report = report_fixed_ver(installed_version:dbVer, fixed_version: "Apply the patch", install_path:path);
security_message(port:dbport, data:report);
exit(0);
}
}
exit(0);
Related
cve
cve
prion
prion
Design/Logic Flaw
2011-07-20 22:55:00
Design/Logic Flaw
2011-07-20 22:55:00
Design/Logic Flaw
2011-07-20 22:55:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (July 2011 CPU)
2011-07-20 00:00:00
securityvulns
securityvulns
Oracle / Sun / Peoplesoft applications multiple security vulnerabilities
2011-08-01 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2011
2011-12-15 00:00:00
6.3 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.4%
Related for OPENVAS:1361412562310812797