CVE-2007-5520

{"id": "CVE-2007-5520", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-10-17T23:17:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27251", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27409", "source": "cve@mitre.org"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1018823", "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/3524", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/3626", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle Internet Directory en la base de datos Oracle 9.2.0.8 y 9.2.0.8DV, y Oracle Application Server 9.0.4.3, 10.1.3.0.0 hasta 10.1.3.3.0, y 10.1.2.0.1 hasta 10.1.2.2.0, tiene impacto desconocido y vectores de ataque, tambi\u00e9n conocido como AS05."}], "lastModified": "2012-10-23T02:36:41.803", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:application_server:10.1.2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB8F5AAE-0365-4E01-AB04-CDC6D58B00B6"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0B4BAA9-D045-4D2B-8220-47F47ED936DF"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B0223F3-A9D4-4A4F-8934-761D83CD5494"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC3575AD-C253-4FBA-A2D8-509DABED8431"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4FEFEB0-0EC5-4285-870E-3E0682673E9C"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.3.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D9D2A52-5131-4A24-A355-2DACAFFA22D6"}, {"criteria": "cpe:2.3:a:oracle:application_server:10.1.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A79FF0E1-4EEF-49E2-890C-1C8937CF2F5A"}, {"criteria": "cpe:2.3:a:oracle:database_server:9.2.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "432A3020-9977-4A10-9CDA-3A71E83F63F9"}, {"criteria": "cpe:2.3:a:oracle:database_server:9.2.0.8dv:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37C10722-4CC7-4C06-8DBC-4D96307DB41E"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}