CVE-2009-1997Oracle Database Server vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.9%
top 23.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedOct 22
Latest updateMay 2

Description

Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDoracle/database_server10.2.0.3, 11.1.0.7+1

🔴Vulnerability Details

2
GHSA
GHSA-59wr-x3f6-83f2: Unspecified vulnerability in the Authentication component in Oracle Database 102022-05-02
CVEList
CVE-2009-1997: Unspecified vulnerability in the Authentication component in Oracle Database 102009-10-22

💥Exploits & PoCs

1
Exploit-DB
EasyCom For PHP 4.0.0 - Buffer Overflow (PoC)2017-02-22
CVE-2009-1997 — Oracle Database Server vulnerability | cvebase