Lucene search

K

MitreCVELIST:CVE-2006-0270

HistoryJan 18, 2006 - 11:00 a.m.

CVE-2006-0270

2006-01-1811:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.4%

Unspecified vulnerability in the Transparent Data Encryption (TDE) Wallet component of Oracle Database server 10.2.0.1 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB27. NOTE: Oracle has not disputed a reliable researcher report that TDA stores the master key without encryption, which allows local users to obtain the key via the SGA.

References

secunia.com/advisories/18493

secunia.com/advisories/18608

securitytracker.com/id?1015499

www.kb.cert.org/vuls/id/545804

www.oracle.com/technetwork/topics/security/cpujan2006-082403.html

www.red-database-security.com/advisory/oracle_tde_unencrypted_sga.html

www.securityfocus.com/archive/1/422262/30/7400/threaded

www.securityfocus.com/bid/16287

www.vupen.com/english/advisories/2006/0243

www.vupen.com/english/advisories/2006/0323

exchange.xforce.ibmcloud.com/vulnerabilities/24186

exchange.xforce.ibmcloud.com/vulnerabilities/24321

5.8 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.4%

Related for CVELIST:CVE-2006-0270

cve1 nvd1 cert1 prion1 openvas1 nessus1