CVE-2007-5531 - OpenCVE

Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Oracle	Application Server Database Server Enterprise Manager

Configuration 1 [-]

OR	cpe:2.3:a:oracle:application_server:-:::::::*
	cpe:2.3:a:oracle:database_server:10.2.0.3:::::::*
	cpe:2.3:a:oracle:enterprise_manager:10.1.0.6:::::::*

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=119332677525918&w=2
http://secunia.com/advisories/27251
http://secunia.com/advisories/27409
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
http://www.securitytracker.com/id?1018823
http://www.us-cert.gov/cas/techalerts/TA07-290A.html
http://www.vupen.com/english/advisories/2007/3524
http://www.vupen.com/english/advisories/2007/3626

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-17T23:00:00

Updated: 2024-08-07T15:31:59.248Z

Reserved: 2007-10-17T00:00:00

Link: CVE-2007-5531

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-10-17T23:17:00.000

Modified: 2019-10-09T22:54:11.467

Link: CVE-2007-5531

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-10-16T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-11-17T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html"}, {"name": "ADV-2007-3524", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3524"}, {"name": "ADV-2007-3626", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3626"}, {"name": "TA07-290A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "1018823", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1018823"}, {"name": "27409", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27409"}, {"name": "27251", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27251"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5531", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html"}, {"name": "ADV-2007-3524", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3524"}, {"name": "ADV-2007-3626", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3626"}, {"name": "TA07-290A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html"}, {"name": "SSRT061201", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "HPSBMA02133", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "1018823", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1018823"}, {"name": "27409", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27409"}, {"name": "27251", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27251"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:31:59.248Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html"}, {"name": "ADV-2007-3524", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3524"}, {"name": "ADV-2007-3626", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3626"}, {"name": "TA07-290A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"name": "1018823", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1018823"}, {"name": "27409", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27409"}, {"name": "27251", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27251"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5531", "datePublished": "2007-10-17T23:00:00", "dateReserved": "2007-10-17T00:00:00", "dateUpdated": "2024-08-07T15:31:59.248Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:application_server:-:*:*:*:*:*:*:*", "matchCriteriaId": "C31CBE64-612C-4B90-B847-04389218F477", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "ED41086B-840A-4B39-B249-461A4B00B57B", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:enterprise_manager:10.1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "AA93A9C0-B771-46CA-A29B-9AFD719928FC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Help para Web, tal y como se usa en Oracle Application Server, Oracle Database 10.2.0.3, y Enterprise Manager 10.1.0.6, tiene un impacto desconocido y vectores de ataque remotos, tambi\u00e9n conocido como EM02."}], "id": "CVE-2007-5531", "lastModified": "2019-10-09T22:54:11.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-10-17T23:17:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "Vendor Advisory"], "url": "http://secunia.com/advisories/27251"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/27409"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1018823"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "http://www.vupen.com/english/advisories/2007/3524"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "http://www.vupen.com/english/advisories/2007/3626"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}