CVE-2011-2231

MEDIUM

Description

Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1, Oracle Fusion Middleware 10.1.3.5, allows remote attackers to affect availability via unknown vectors.

References

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

Details

Source: MITRE

Published: 2011-07-20

Updated: 2011-10-05

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:database_server:10.2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:database_server:10.2.0.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:database_server:11.2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fusion_middleware:10.1.3.5:*:*:*:*:*:*:*