PT-2011-2728 · Oracle · Oracle Database Server+1
Published
2011-07-20
·
Updated
2011-10-05
·
CVE-2011-0882
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Oracle Database Server versions 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7
Oracle Enterprise Manager Grid Control versions 10.1.0.6, 10.2.0.5, and 11.1.0.1
Description
The issue affects the confidentiality, integrity, and availability of the system, but the specific vectors related to Scheduler are unknown.
Recommendations
For Oracle Database Server versions 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7, update to a version that includes the fix for this issue.
For Oracle Enterprise Manager Grid Control versions 10.1.0.6, 10.2.0.5, and 11.1.0.1, update to a version that includes the fix for this issue.
As a temporary workaround, consider restricting access to the Scheduler component until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Oracle Database Server
Oracle Enterprise Manager Grid Control