CVE-2006-3700 - OpenCVE

Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Oracle	Database Server

Configuration 1 [-]

OR	cpe:2.3:a:oracle:database_server:9.2.0.6:::::::*
	cpe:2.3:a:oracle:database_server:10.1.0.4:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/21111
http://secunia.com/advisories/21165
http://securitytracker.com/id?1016529
http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html
http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html
http://www.securityfocus.com/archive/1/440758/100/100/threaded
http://www.securityfocus.com/bid/19054
http://www.us-cert.gov/cas/techalerts/TA06-200A.html
http://www.vupen.com/english/advisories/2006/2863
http://www.vupen.com/english/advisories/2006/2947
https://exchange.xforce.ibmcloud.com/vulnerabilities/27897

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-19T10:00:00

Updated: 2024-08-07T18:39:53.881Z

Reserved: 2006-07-18T00:00:00

Link: CVE-2006-3700

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-07-21T14:03:00.000

Modified: 2018-10-18T16:49:00.473

Link: CVE-2006-3700

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-18T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1016529", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"tags": ["x_refsource_MISC"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21111"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2863"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3700", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1016529", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"name": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html", "refsource": "MISC", "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21111"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2863"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:39:53.881Z"}, "title": "CVE Program Container", "references": [{"name": "1016529", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21111"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2863"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3700", "datePublished": "2006-07-19T10:00:00", "dateReserved": "2006-07-18T00:00:00", "dateUpdated": "2024-08-07T18:39:53.881Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:database_server:9.2.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "07F11F24-415A-4E36-9D03-5B7594356183", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "F21B42DF-71DC-4FC4-8050-CFF7A3B641E5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en Oracle Database 9.2.0.6 y 10.1.0.4 tienen un impacto desconocido y vectores de ataque, tambi\u00e9n conocido como racle Vuln# (1) DB04 para Web Distributed Authoring y Versioning (DAV) y (2) DB23 para XMLDB."}], "id": "CVE-2006-3700", "lastModified": "2018-10-18T16:49:00.473", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-21T14:03:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21111"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21165"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016529"}, {"source": "cve@mitre.org", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/19054"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2863"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}