PT-2007-5088 · Oracle · Oracle Database+1
Published
2007-07-18
·
Updated
2017-07-29
·
CVE-2007-3857
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Oracle Database version 10.1.0.5
Description:
The issue affects Oracle Database, allowing remote authenticated users to have an unknown impact. This is due to unspecified vulnerabilities in the Oracle Text component, including vectors related to
CTXSYS.DRVXMD, CTXSYS.DRI MOVE CTXSYS, and JavaVM.Recommendations:
For Oracle Database version 10.1.0.5, consider restricting access to the Oracle Text component and JavaVM until a fix is available. As a temporary workaround, disabling the use of
CTXSYS.DRVXMD and CTXSYS.DRI MOVE CTXSYS may help minimize the risk of exploitation.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Javavm
Oracle Database