Oracle Database Multiple Vulnerabilities (July 2007 CPU)

High Nessus Plugin ID 56057

Synopsis

The remote database server is affected by multiple vulnerabilities.

Description

The remote Oracle database server is missing the July 2007 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components :

- Advanced Queuing

- DataGuard

- JavaVM

- Oracle Data Mining

- Oracle Text

- PL/SQL

- Rules Manager

- Spatial

- SQL Compiler

Solution

Apply the appropriate patch according to the July 2007 Oracle Critical Patch Update advisory.

See Also

http://www.nessus.org/u?6d303ce9

Plugin Details

Severity: High

ID: 56057

File Name: oracle_rdbms_cpu_jul_2007.nasl

Version: 1.11

Type: local

Family: Databases

Published: 2011/11/16

Updated: 2018/11/15

Dependencies: 45624, 71644

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 9

Temporal Score: 7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:oracle:database_server

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2007/07/17

Vulnerability Publication Date: 2007/07/17

Exploitable With

ExploitHub (EH-11-516)

Reference Information

CVE: CVE-2007-3853, CVE-2007-3854, CVE-2007-3855, CVE-2007-3856, CVE-2007-3857, CVE-2007-3858, CVE-2007-3859

BID: 24887