CVE-2010-3594

Name of the Vulnerable Software and Affected Versions Oracle Enterprise Manager Grid Control version 6.0 Oracle Real User Experience Insight (affected versions not specified)

Description The issue affects confidentiality and integrity, potentially via SQL injection in rsynclogdird, related to improper escaping of UTF-8 characters while processing log files. There is no information about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Oracle Enterprise Manager Grid Control version 6.0, update to a version that addresses the SQL injection issue in rsynclogdird. For Oracle Real User Experience Insight, at the moment, there is no information about a newer version that contains a fix for this vulnerability.