← back
CVE-2004-1366

CVE-2004-1366

EPSS 15.5%
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/18661http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1http://www.kb.cert.org/vuls/id/316206http://www.ngssoftware.com/advisories/oracle23122004D.txthttp://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdfhttp://www.securityfocus.com/archive/1/385323http://www.securityfocus.com/bid/10871http://www.us-cert.gov/cas/techalerts/TA04-245A.html