Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20202
HistoryOct 26, 2010 - 12:00 a.m.

Oracle Enterprise Manager Grid Control HTTP请求远程溢出漏洞

2010-10-2600:00:00
Root
www.seebug.org
10

0.006 Low

EPSS

Percentile

76.1%

JSON

BUGTRAQ ID: 43945
CVE ID: CVE-2010-2390

Grid Control是为整个Oracle IT架构提供中心化监视、管理、生命周期管理功能的系统管理软件。

远程攻击者可以通过向Grid Control的EM Console组件提交超长的HTTP请求触发缓冲区溢出,导致执行任意指令。

Oracle Enterprise Manager Grid Control 10.x
厂商补丁:

Oracle

Oracle已经为此发布了一个安全公告(cpuoct2010)以及相应补丁:
cpuoct2010:Oracle Critical Patch Update Advisory - October 2010
链接:http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Related

securityvulns 3
cve 1
prion 1
nessus 1
oracle 1
securityvulns
securityvulns
VUPEN Security Research - Oracle Products HTTP Request Remote Buffer Overflow Vulnerability (CVE-2010-2390)
2010-10-16 00:00:00
Oracle Critical Patch Update Advisory - October 2010
2010-10-13 00:00:00
Oracle / Sun / Peoplesoft applications multiple security vulnerabilities
2011-07-18 00:00:00
cve
cve
CVE-2010-2390
2010-10-14 00:00:00
prion
prion
Security feature bypass
2010-10-14 00:00:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (October 2010 CPU)
2010-11-18 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2010
2010-10-12 00:00:00

0.006 Low

EPSS

Percentile

76.1%

JSON
Related for SSV:20202
securityvulns3cve1prion1nessus1oracle1