CVE-2010-2389 — LOW (1.0) — White Hats Nepal

Vulnerability Description

Unspecified vulnerability in the Perl component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5; and Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0; allows local users to affect integrity via unknown vectors related to Local Logon.

CVSS Score

1.0

LOW

AV:L/AC:H/Au:S/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Oracle	Database Server	10.1.0.5
Oracle	Fusion Middleware	11.1.1.1.0

References

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
http://www.us-cert.gov/cas/techalerts/TA10-287A.htmlUS Government Resource
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
http://www.us-cert.gov/cas/techalerts/TA10-287A.htmlUS Government Resource

FAQ

What is CVE-2010-2389?

CVE-2010-2389 is a vulnerability with a CVSS score of 1.0 (LOW). Unspecified vulnerability in the Perl component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5; and Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0; allows local users to a...

How severe is CVE-2010-2389?

CVE-2010-2389 has been rated LOW with a CVSS base score of 1.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-2389?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Database Server, Oracle Fusion Middleware.