CVE-2010-2390

Name of the Vulnerable Software and Affected Versions Oracle Database Server versions 10.1.0.5 through 10.1.0.5 Oracle Database Server versions 10.2.0.3 through 10.2.0.3 Oracle Fusion Middleware versions 10.1.2.3 through 10.1.2.3 Oracle Fusion Middleware versions 10.1.4.3 through 10.1.4.3 Enterprise Manager Grid Control (affected versions not specified)

Description The issue affects the Database Control component in EM Console, allowing remote attackers to impact confidentiality, integrity, and availability. The vectors used for the attack are unknown.

Recommendations For Oracle Database Server version 10.1.0.5, update to a version that includes the fix for this issue. For Oracle Database Server version 10.2.0.3, update to a version that includes the fix for this issue. For Oracle Fusion Middleware version 10.1.2.3, update to a version that includes the fix for this issue. For Oracle Fusion Middleware version 10.1.4.3, update to a version that includes the fix for this issue. For Enterprise Manager Grid Control, at the moment, there is no information about a newer version that contains a fix for this vulnerability.