NVD

Id
2531  
Name
CVE-2008-2625  
Description
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.2 allows remote attackers to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the Oracle October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue involves an authentication bypass by establishing a TNS connection and impersonating a user session via a crafted authentication message during proxy authentication mode.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-03  
Published
2008-10-14  
Modified Date
2012-10-22  
Seq
2008-2625  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
15939 2531 CVE-2008-2625 http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html  View
15940 2531 CVE-2008-2625 20081019 CVE-2008-2625: Oracle DBMS ? Proxy Authentication Vulnerability  View
15941 2531 CVE-2008-2625 1021050  View
15942 2531 CVE-2008-2625 ADV-2008-2825  View
15943 2531 CVE-2008-2625 oracle-db-corerdbms-unauth-access(45880)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46537 JVNDB-2008-001847 Oracle Database の Core RDBMS コンポーネントにおける脆弱性 Oracle Database の Core RDBMS コンポーネントには機密性、完全性に影響のある脆弱性が存在します。 CVE-2008-2625 32738 CVE-2008-2625 2531 4 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001847.html 2008-10-14 2008-11-13 View