CVE-2005-3641 - OpenCVE

Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication by supplying a valid username.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Oracle	Database Server Database Server Lite Oracle10g Oracle8i Oracle9i

Configuration 1 [-]

OR	cpe:2.3:a:oracle:database_server:7.0.2:::::::*
	cpe:2.3:a:oracle:database_server:7.0.64:::::::*
	cpe:2.3:a:oracle:database_server:7.1.3:::::::*
	cpe:2.3:a:oracle:database_server:7.1.5:::::::*
	cpe:2.3:a:oracle:database_server:7.3.3:::::::*
	cpe:2.3:a:oracle:database_server:7.3.4:::::::*
	cpe:2.3:a:oracle:database_server:8.0.1:::::::*
	cpe:2.3:a:oracle:database_server:8.0.2:::::::*
	cpe:2.3:a:oracle:database_server:8.0.3:::::::*
	cpe:2.3:a:oracle:database_server:8.0.4:::::::*
	cpe:2.3:a:oracle:database_server:8.0.5:::::::*
	cpe:2.3:a:oracle:database_server:8.0.5.1:::::::*
	cpe:2.3:a:oracle:database_server:8.0.6:::::::*
	cpe:2.3:a:oracle:database_server:8.0.6.3:::::::*
	cpe:2.3:a:oracle:database_server:8.1.5:::::::*
	cpe:2.3:a:oracle:database_server:8.1.6:::::::*
	cpe:2.3:a:oracle:database_server:8.1.7:::::::*
	cpe:2.3:a:oracle:database_server:8.1.7.4:::::::*
	cpe:2.3:a:oracle:database_server_lite:5.0:::::::*
	cpe:2.3:a:oracle:database_server_lite:5.0.1.0.0:::::::*
	cpe:2.3:a:oracle:database_server_lite:5.0.2.0.0:::::::*
	cpe:2.3:a:oracle:database_server_lite:5.0.2.9.0:::::::*
	cpe:2.3:a:oracle:oracle10g:enterprise_9.0.4.0:::::::*
	cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.2:::::::*
	cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3:::::::*
	cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3.1:::::::*
	cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.4:::::::*
	cpe:2.3:a:oracle:oracle10g:personal_9.0.4.0:::::::*
	cpe:2.3:a:oracle:oracle10g:personal_10.1.0.2:::::::*
	cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3:::::::*
	cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3.1:::::::*
	cpe:2.3:a:oracle:oracle10g:personal_10.1.0.4:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_9.0.4.0:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_10.1.0.2:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3.1:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_10.1.0.4:::::::*
	cpe:2.3:a:oracle:oracle10g:standard_10.1.0.4.2:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.0.5.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.0.6.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.0.6.0.1:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5.0.2:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5.1.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.6.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.6.1.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7.1.0:::::::*
	cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7.4:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.0.6:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.0.6.3:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.5:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.6:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.7:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.7.0.0:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.7.1:::::::*
	cpe:2.3:a:oracle:oracle8i:standard_8.1.7.4:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_8.1.7:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.4:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5_fips:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.2.4:::::::*
	cpe:2.3:a:oracle:oracle9i:enterprise_9.0.4:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.3:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.5:::::::*
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.6:::::::*
cpe:2.3:a:oracle:oracle9i:personal_8.1.7:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.1.4:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5_fips:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.2.4:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.0.4:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2.0.3:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2.0.5:::::::*
cpe:2.3:a:oracle:oracle9i:personal_9.2.0.6:::::::*
cpe:2.3:a:oracle:oracle9i:standard_8.1.7:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1.2:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1.3:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1.4:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5_fips:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.2.4:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.0.4:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.0.3:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.0.5:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.0.6:::::::*
cpe:2.3:a:oracle:oracle9i:standard_9.2.3:::::::*

No data.

References

Link	Providers
http://www.ngssoftware.com/papers/database-on-xp.pdf
http://www.securityfocus.com/bid/15450

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-11-16T21:17:00Z

Updated: 2024-09-16T23:11:46.098Z

Reserved: 2005-11-16T00:00:00Z

Link: CVE-2005-3641

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2005-11-16T21:22:00.000

Modified: 2008-09-05T20:54:52.977

Link: CVE-2005-3641

Redhat

No data.

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object