CVE-2006-3708Oracle Application Server vulnerability

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
4.2%
top 11.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Application Server
Timeline
PublishedJul 21
Latest updateMay 1

Description

Unspecified vulnerability in OC4J for Oracle Application Server 9.0.2.3, 9.0.3.1, 9.0.4.2, 10.1.2.0.2, and 10.1.2.1 has unknown impact and attack vectors, aka Oracle Vuln# AS03.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDoracle/application_server5 versions+4

Patches

Patch: www.red-database-security.comPatch: www.securityfocus.comPatch: www.red-database-security.com

🔴Vulnerability Details

2
GHSA
GHSA-6h35-g8x6-wv9p: Unspecified vulnerability in OC4J for Oracle Application Server 92022-05-01
CVEList
CVE-2006-3708: Unspecified vulnerability in OC4J for Oracle Application Server 92006-07-19

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows - 'NetpManageIPCConnect' Remote Stack Overflow (MS06-070)2006-11-18
CVE-2006-3708 — Oracle Application Server vulnerability | cvebase