CVE-2004-1366
CVE-2004-1366
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/18661http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1http://www.kb.cert.org/vuls/id/316206http://www.ngssoftware.com/advisories/oracle23122004D.txthttp://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdfhttp://www.securityfocus.com/archive/1/385323http://www.securityfocus.com/bid/10871http://www.us-cert.gov/cas/techalerts/TA04-245A.html