CVE-2012-3220

Unspecified vulnerability in the Spatial component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users with Create Session privileges to affect confidentiality, integrity, and availability via unknown vectors.

Published: Jan 17, 2013
Updated: Apr 13, 2023
CVE: CVE-2012-3220
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / database_server	10.2.0.4	10.2.0.4.x
oracle / database_server	10.2.0.3	10.2.0.3.x
oracle / database_server	11.2.0.2	11.2.0.2.x
oracle / database_server	10.2.0.5	10.2.0.5.x
oracle / database_server	11.2.0.3	11.2.0.3.x
oracle / database_server	11.1.0.7	11.1.0.7.x

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17022

Vulnerability Database

CVE-2012-3220