This script is Copyright (C) 2013-2017 Tenable Network Security, Inc.
A database management application installed on the remote host is
affected by multiple vulnerabilities.
The Oracle Database Management Plug-In installed on the remote host is
missing the October 2013 Critical Patch Update (CPU). It is,
therefore, affected by multiple vulnerabilities in the Enterprise
Manager Base Platform component :
- An unspecified flaw exists in the Schema Management
subcomponent that allows an unauthenticated, remote
attacker to impact integrity. (CVE-2013-3762)
- An unspecified flaw exists in the DB Performance
Advisories/UIs subcomponent that allows an
unauthenticated, remote attacker to impact integrity.
- Multiple unspecified flaws exist in the Storage
Management subcomponent that allow an unauthenticated,
remote attacker to impact integrity. (CVE-2013-5827,
See also :
Apply the appropriate patch according to the October 2013 Oracle
Critical Patch Update advisory.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : false