Description

The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.

Remediation

References

CVE-2005-0298

Related Vulnerabilities

Masa CMS Incorrect Authorization Vulnerability (CVE-2022-47002)

Jenkins Protection Mechanism Failure Vulnerability (CVE-2021-21696 )

Caddy Web Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28923)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42498)

Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2018-8011)

Severity

Medium

Classification

CVE-2005-0298

Tags

Missing Update Known Vulnerabilities