Oracle Enterprise Manager Cloud Control Security Framework Vulnerability (October 2016 CPU)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

An enterprise management application installed on the remote host is
affected by an unspecified vulnerability that impacts confidentiality
and integrity.

Description :

The version of Oracle Enterprise Manager Cloud Control installed on
the remote host is affected by an unspecified flaw in the Enterprise
Manager Base Platform component, within the Security Framework
subcomponent, that allows a local attacker to impact confidentiality
and integrity. No other details are available.

Note that the product was formerly known as Enterprise Manager Grid
Control.

See also :

http://www.nessus.org/u?e4c70039

Solution :

Apply the appropriate patch according to the October 2016 Oracle
Critical Patch Update advisory.

Risk factor :

Low / CVSS Base Score : 3.3
(CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:N)
CVSS Temporal Score : 2.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 94250 ()

Bugtraq ID: 93751

CVE ID: CVE-2016-5604

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now