CVE-2006-5353Oracle Application Server vulnerability

3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
0.8%
top 26.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Application ServerOracle Collaboration Suite
Timeline
PublishedOct 18
Latest updateMay 1

Description

Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0.0, and Oracle Collaboration Suite 9.0.4.2 and 10.1.2, has unknown impact and remote attack vectors related to the Mod_rewrite Module, aka Vuln# OHS01.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDoracle/application_server10.1.2.0.1, 10.1.2.0.2, 9.0.4.3+2
NVDoracle/collaboration_suite10.1.2.0, 9.0.4.2+1

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-v7f6-gv4w-9mh8: Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 92022-05-01
CVEList
CVE-2006-5353: Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 92006-10-18
CVE-2006-5353 — Oracle Application Server vulnerability | cvebase