CVE-2008-2602

Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to the IMP_FULL_DATABASE role.

Published: Jul 16, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-2602
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:N/AC:H/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / database_server	10.2.0.4	10.2.0.4.x
oracle / database_server	11.1.0.6	11.1.0.6.x
oracle / data_pump_component	-	-
oracle / database_server	10.1.0.5	10.1.0.5.x

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143
http://secunia.com/advisories/31087
http://secunia.com/advisories/31113
http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
http://www.securitytracker.com/id?1020499
http://www.vupen.com/english/advisories/2008/2109/references
http://www.vupen.com/english/advisories/2008/2115

Vulnerability Database

CVE-2008-2602