Oracle Application Server < 10.1.0.0.4 Logging Service Interruption
Medium Nessus Network Monitor Plugin ID 2882
SynopsisThe remote host is vulnerable to a flaw that would allow a single user to affect logging-level changes for all users of a database.
DescriptionThe remote host is running the Oracle Application Server. This version is reported vulnerable to a flaw where a SYS user can disable Fine Grained Auditing (FGA) which then impacts the logging level of all users of the database.
SolutionUpgrade to version 10.1.0.0.4 or higher.