NVD

Id
59001  
Name
CVE-2006-0261  
Description
Multiple unspecified vulnerabilities in Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.5 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) DB07 in the Dictionary component and (2) DB14 in the Oracle Label Security component. NOTE: Oracle has not disputed reliable researcher claims that DB07 involves plaintext storage of the TDE wallet password in a trace file by event 10053.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2016-12-20  
Published
2006-01-18  
Modified Date
2012-10-22  
Seq
2006-0261  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
303022 59001 CVE-2006-0261 1015499  View
303023 59001 CVE-2006-0261 VU#545804  View
303024 59001 CVE-2006-0261 http://www.oracle.com/technetwork/topics/security/cpujan2006-082403.html  View
303025 59001 CVE-2006-0261 http://www.red-database-security.com/advisory/oracle_tde_wallet_password.html  View
303026 59001 CVE-2006-0261 20060117 Oracle Database 10g Rel. 2 - Event 10053 logs TDE wallet password in cleartext  View
303027 59001 CVE-2006-0261 16287  View
303028 59001 CVE-2006-0261 ADV-2006-0243  View
303029 59001 CVE-2006-0261 ADV-2006-0323  View
303030 59001 CVE-2006-0261 oracle-masterkey-plaintext(24168)  View
303031 59001 CVE-2006-0261 oracle-january2006-update(24321)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57836 JVNDB-2006-000032 Oracle Database における脆弱性 (DB07,DB14) ------------ CVE-2006-0261 16363 CVE-2006-0261 59001 10 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000032.html 2006-01-17 2007-04-01 View