Vulnerability Description
Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0.0, and Oracle Collaboration Suite 9.0.4.2 and 10.1.2, has unknown impact and remote attack vectors related to the Mod_rewrite Module, aka Vuln# OHS01.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Application Server | 9.0.4.3 |
| Oracle | Collaboration Suite | 9.0.4.2 |
References
- http://secunia.com/advisories/22396
- http://securitytracker.com/id?1017077
- http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html
- http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
- http://www.securityfocus.com/archive/1/449711/100/0/threaded
- http://www.securityfocus.com/bid/20588Patch
- http://www.us-cert.gov/cas/techalerts/TA06-291A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2006/4065
- http://secunia.com/advisories/22396
- http://securitytracker.com/id?1017077
- http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html
- http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
- http://www.securityfocus.com/archive/1/449711/100/0/threaded
- http://www.securityfocus.com/bid/20588Patch
- http://www.us-cert.gov/cas/techalerts/TA06-291A.htmlUS Government Resource
FAQ
What is CVE-2006-5353?
CVE-2006-5353 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0.0, and Oracle Collaboration Suite 9.0.4.2 and 10.1.2, has unknown i...
How severe is CVE-2006-5353?
CVE-2006-5353 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5353?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Application Server, Oracle Collaboration Suite.