Vulnerability Description
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUTIL, a different vulnerability than CVE-2008-3991.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Database 10G | 10.1.0.5 |
| Oracle | Database 9I | 9.2.0.8 |
References
- http://secunia.com/advisories/32291Vendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
- http://www.securitytracker.com/id?1021050
- http://www.vupen.com/english/advisories/2008/2825
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45893
- http://secunia.com/advisories/32291Vendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
- http://www.securitytracker.com/id?1021050
- http://www.vupen.com/english/advisories/2008/2825
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45893
FAQ
What is CVE-2008-3990?
CVE-2008-3990 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUT...
How severe is CVE-2008-3990?
CVE-2008-3990 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3990?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Database 10G, Oracle Database 9I.