Summary
This host is running Oracle database and is prone to unspecified vulnerability.
Impact
Successful exploitation will let remote authenticated users to affect confidentiality via unknown vectors.
Impact Level: Application
Solution
Apply patches from below link,
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html
*****
NOTE : Ignore this warning, if above mentioned patch is already applied.
*****
Insight
The flaw is due to unspecified errors in the 'XML DB component', and unknown impact and attack vectors.
Affected
Oracle Database versions 9.2.0.8, 9.2.0.8DV, 10.1.0.5 and 10.2.0.3
References
Severity
Classification
-
CVE CVE-2010-0851 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:P/I:N/A:N
Related Vulnerabilities
- Oracle Database Server Multiple Information Disclosure Vulnerabilities
- IBM DB2 REPEAT Buffer Overflow and TLS Renegotiation Vulnerabilities (Linux)
- IBM DB2 DML Statement Execution Remote Privilege Escalation Vulnerability (Linux)
- Oracle Database Server Authentication Protocol Security Bypass Vulnerability
- Oracle MySQL Multiple Unspecified vulnerabilities - 01 May14 (Windows)