Detections
Analytics

CVE-2007-3857

high

Description

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 allow remote authenticated users to have an unknown impact via (a) the Oracle Text component, including (1) unspecified vectors (DB05), (2) CTXSYS.DRVXMD (DB06), (3) CTXSYS.DRI_MOVE_CTXSYS (DB07), (4) CTXSYS.DRVXMD (DB08), and (b) JavaVM (DB14).

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/35490

http://www.vupen.com/english/advisories/2007/2635

http://www.vupen.com/english/advisories/2007/2562

http://www.us-cert.gov/cas/techalerts/TA07-200A.html

http://www.securitytracker.com/id?1018415

http://www.red-database-security.com/advisory/oracle_cpu_jul_2007.html

http://www.oracle.com/technetwork/topics/security/cpujul2007-087014.html

http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_July_2007_Analysis.pdf

http://secunia.com/advisories/26166

http://secunia.com/advisories/26114

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00727143

Details

Source: Mitre, NVD

Published: 2007-07-18

Updated: 2017-07-29

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High