Vulnerability Description
Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown vectors.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Application Server | 10.1.2.3 |
| Oracle | Database Server | 9.2.0.8 |
References
- http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
- http://www.securitytracker.com/id?1023438
- http://www.us-cert.gov/cas/techalerts/TA10-012A.htmlUS Government Resource
- http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
- http://www.securitytracker.com/id?1023438
- http://www.us-cert.gov/cas/techalerts/TA10-012A.htmlUS Government Resource
FAQ
What is CVE-2009-3412?
CVE-2009-3412 is a vulnerability with a CVSS score of 1.0 (LOW). Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown v...
How severe is CVE-2009-3412?
CVE-2009-3412 has been rated LOW with a CVSS base score of 1.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3412?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Application Server, Oracle Database Server.