Oracle Application Express (Apex) Unspecified Issues (pre 3.1)

This script is Copyright (C) 2009-2013 Recx Ltd.


Synopsis :

The remote host is running a vulnerable version of Oracle Apex.

Description :

There are unspecified vulnerabilities in the Application Express
component of the Oracle Database. The updated version (3.1) contains
two security fixes for vulnerabilities of which one is remotely
exploitable without authentication.

See also :

http://www.oracle.com/technetwork/developer-tools/apex/index.html
http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html

Solution :

Upgrade Application Express to at least version 3.1.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Web Servers

Nessus Plugin ID: 64716 ()

Bugtraq ID:

CVE ID: