CVE-2006-5359
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Oracle E-Business Suite and Applications 11.5.10CU2, have unknown impact and remote attack vectors, aka Vuln# (1) REP01 and (2) REP02. NOTE: as of 20061027, Oracle has not disputed reports from a reliable researcher that these issues are related to (a) showenv and (b) parsequery for REP01, and (c) cellwrapper and (d) delimiter for REP02.
Múltiples vulnerabilidades no especificadas en el componente Oracle Reports Developer en Oracle Application Server 9.0.4.3 y 10.1.2.0.2, y Oracle E-Business Suite y Applications 11.5.10CU2, tienen impacto y vectores de ataque remotos desconocidos, también conocido como Vuln# (1) REP01 y (2) REP02. NOTA: a fecha de 27/10/2006, Oracle no ha negado los informes de un investigador fiable de que estos problemas están relacionacos con (a) showenv y (b) parsequery en el caso de REP01, y (c) cellwrappper y (d) delimiter para REP02.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-10-17 CVE Reserved
- 2006-10-18 CVE Published
- 2024-04-29 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (10)
URL | Tag | Source |
---|---|---|
http://securitytracker.com/id?1017077 | Vdb Entry | |
http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html | X_refsource_confirm | |
http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html | X_refsource_misc | |
http://www.red-database-security.com/advisory/oracle_reports_css.html | X_refsource_misc | |
http://www.securityfocus.com/archive/1/449503/100/0/threaded | Mailing List | |
http://www.us-cert.gov/cas/techalerts/TA06-291A.html | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.securityfocus.com/bid/20588 | 2018-10-17 |
URL | Date | SRC |
---|---|---|
http://secunia.com/advisories/22396 | 2018-10-17 | |
http://www.securityfocus.com/archive/1/449711/100/0/threaded | 2018-10-17 | |
http://www.vupen.com/english/advisories/2006/4065 | 2018-10-17 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Oracle Search vendor "Oracle" | Application Server Search vendor "Oracle" for product "Application Server" | 9.0.4.3 Search vendor "Oracle" for product "Application Server" and version "9.0.4.3" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Application Server Search vendor "Oracle" for product "Application Server" | 10.1.2.0.2 Search vendor "Oracle" for product "Application Server" and version "10.1.2.0.2" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | E-business Suite Search vendor "Oracle" for product "E-business Suite" | 11.5.10.2 Search vendor "Oracle" for product "E-business Suite" and version "11.5.10.2" | - |
Affected
|