Vulnerability Description
Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Application Server | - |
| Oracle | Database Server | 10.2.0.3 |
| Oracle | Enterprise Manager | 10.1.0.6 |
References
- http://marc.info/?l=bugtraq&m=119332677525918&w=2Mailing ListThird Party Advisory
- http://secunia.com/advisories/27251Third Party AdvisoryVendor Advisory
- http://secunia.com/advisories/27409Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.htmlVendor Advisory
- http://www.securitytracker.com/id?1018823Third Party AdvisoryVDB Entry
- http://www.us-cert.gov/cas/techalerts/TA07-290A.htmlThird Party AdvisoryUS Government Resource
- http://www.vupen.com/english/advisories/2007/3524Permissions Required
- http://www.vupen.com/english/advisories/2007/3626Permissions Required
- http://marc.info/?l=bugtraq&m=119332677525918&w=2Mailing ListThird Party Advisory
- http://secunia.com/advisories/27251Third Party AdvisoryVendor Advisory
- http://secunia.com/advisories/27409Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.htmlVendor Advisory
- http://www.securitytracker.com/id?1018823Third Party AdvisoryVDB Entry
- http://www.us-cert.gov/cas/techalerts/TA07-290A.htmlThird Party AdvisoryUS Government Resource
- http://www.vupen.com/english/advisories/2007/3524Permissions Required
FAQ
What is CVE-2007-5531?
CVE-2007-5531 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM0...
How severe is CVE-2007-5531?
CVE-2007-5531 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5531?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Application Server, Oracle Database Server, Oracle Enterprise Manager.