Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (July 2015 CPU)

This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.


Synopsis :

The remote host has an enterprise management application installed
that is affected by multiple vulnerabilities.

Description :

The version of Oracle Enterprise Manager Cloud Control installed on
the remote host is affected by multiple unspecified flaws in the
'Content Management' and 'RAC Management' subcomponents of the
Enterprise Manager for Oracle Database component. A remote attacker
can exploit these flaws to impact the integrity and confidentiality of
the system.

Note that the product was formerly known as Enterprise Manager Grid
Control.

See also :

http://www.nessus.org/u?0941d130

Solution :

Apply the appropriate patch according to the July 2015 Oracle
Critical Patch Update advisory.

Risk factor :

Medium / CVSS Base Score : 5.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N)
CVSS Temporal Score : 4.8
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 84879 ()

Bugtraq ID: 75828
75834
75836

CVE ID: CVE-2015-2646
CVE-2015-2647
CVE-2015-4735

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now