CVE-2009-3413

2010-01-1301:30:00

oracle

web.nvd.nist.gov

cve-2009-3413

oracle database

unspecified vulnerability

remote users

confidentiality

integrity

CVSS2

3.2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

MULTIPLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:M/C:P/I:P/A:N

AI Score

5.4

Confidence

Low

EPSS

0.001

Percentile

50.7%

JSON

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3414.

Affected configurations

Nvd

Node

oracledatabase_serverMatch9.2.0.8

oracledatabase_serverMatch9.2.0.8dv

oracledatabase_serverMatch10.1.0.5

oracledatabase_serverMatch10.2.0.3

VendorProductVersionCPE
oracledatabase_server9.2.0.8cpe:2.3:a:oracle:database_server:9.2.0.8:*:*:*:*:*:*:*
oracledatabase_server9.2.0.8dvcpe:2.3:a:oracle:database_server:9.2.0.8dv:*:*:*:*:*:*:*
oracledatabase_server10.1.0.5cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
oracledatabase_server10.2.0.3cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	database_server	9.2.0.8	cpe:2.3:a:oracle:database_server:9.2.0.8:::::::*
oracle	database_server	9.2.0.8dv	cpe:2.3:a:oracle:database_server:9.2.0.8dv:::::::*
oracle	database_server	10.1.0.5	cpe:2.3:a:oracle:database_server:10.1.0.5:::::::*
oracle	database_server	10.2.0.3	cpe:2.3:a:oracle:database_server:10.2.0.3:::::::*