Описание
The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.
Ссылки
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:oracle:listener:7.3.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:listener:8.0.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:listener:8.1.6:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00584
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.
EPSS
Процентиль: 68%
0.00584
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other