| Vulnerability Name: | CVE-2012-0552 (CCN-74935) | ||||||||
| Assigned: | 2012-04-17 | ||||||||
| Published: | 2012-04-17 | ||||||||
| Updated: | 2013-10-11 | ||||||||
| Summary: | Unspecified vulnerability in the Oracle Spatial component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | ||||||||
| CVSS v3 Severity: | 9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C) 6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
6.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2012-0552 Source: SUSE Type: UNKNOWN SUSE-SU-2012:1020 Source: MANDRIVA Type: UNKNOWN MDVSA-2013:150 Source: CCN Type: Oracle Critical Patch Update Advisory - April 2012 Oracle Critical Patch Update Advisory - April 2012 Source: CONFIRM Type: Vendor Advisory http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html Source: CCN Type: OSVDB ID: 81393 Oracle Database Server Oracle Spatial Component Unspecified Remote Code Execution Source: CCN Type: BID-53097 Oracle Database Server CVE-2012-0552 Remote Oracle Spatial Vulnerability Source: SECTRACK Type: UNKNOWN 1026929 Source: XF Type: UNKNOWN database-spatial-cve20120552(74935) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||