CVE-2008-0347

Severity

99%

Complexity

99%

Confidentiality

165%

Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10.1.2; Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; and Application Server 9.0.4.3 and 10.1.2.0.2; has unknown impact and local attack vectors, aka OCS01. NOTE: Oracle has not disputed a reliable claim that this issue is related to WKSYS schema privileges.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2008-01-17 23:00:00

Last updated 6 years ago

2018-10-15 21:59:00

Affected Software

Oracle Application Server 9i 1.0.2.2

1.0.2.2

Oracle Application Server 10g 9.0.4.3

9.0.4.3

Oracle Application Server 10g 10.1.2.0.2

10.1.2.0.2

Oracle Application Server 10g 10.1.2.1.0

10.1.2.1.0

Oracle Application Server 10g 10.1.2.2.0

10.1.2.2.0

Oracle Application Server 10g 10.1.3.0.0

10.1.3.0.0

Oracle Application Server 10g 10.1.3.1.0

10.1.3.1.0

Oracle Application Server 10g 10.1.3.3.0

10.1.3.3.0

Oracle Collaboration Suite 10.1.2

10.1.2

Oracle Database Server 9.2.0.8

9.2.0.8

オラクルデータベースサーバ 9.2.0.8DV

9.2.0.8dv

オラクルデータベースサーバ 10g 10.1.0.5

10.1.0.5

Oracle Database Server 10g 10.2.0.2

10.2.0.2

オラクルデータベースサーバ 10g 10.2.0.3

10.2.0.3

Oracle Database Server 11g 11.1.0.6

11.1.0.6

Oracle E-Business Suite 11i 11.5.9

11.5.9

Oracle E-Business Suite 11i 11.5.10

11.5.10

Oracle E-Business Suite 11i 11.5.10.2

11.5.10.2

Oracle E-Business Suite 12.0.0

12.0.0

Oracle E-Business Suite 12.0.1

12.0.1

Oracle E-Business Suite 12 12.0.2

12.0.2

Oracle E-Business Suite 12 12.0.3

12.0.3

Oracle PeopleSoft Enterprise PeopleTools 8.47

8.47

Oracle PeopleSoft Enterprise PeopleTools 8.48

8.48

Oracle PeopleSoft Enterprise PeopleTools 8.49

8.49

References

SSRT061201

28518

Vendor Advisory

28556