Vulnerability Details CVE-2005-2378
Directory traversal vulnerability in Oracle Reports allows remote attackers to read arbitrary files via an absolute or relative path to the (1) CUSTOMIZE or (2) desformat parameters to rwservlet. NOTE: vector 2 is probably the same as CVE-2006-0289, and fixed in Jan 2006 CPU.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=112181054226520&w=2
- http://marc.info/?l=bugtraq&m=112181242916757&w=2
- http://secunia.com/advisories/18493
- http://secunia.com/advisories/18608
- http://securitytracker.com/id?1014525
- http://securitytracker.com/id?1014527
- http://www.red-database-security.com/advisory/oracle_reports_read_any_file.html
- http://www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html
- http://www.securityfocus.com/archive/1/422256/30/7430/threaded
- http://www.vupen.com/english/advisories/2006/0323
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24321
- http://marc.info/?l=bugtraq&m=112181054226520&w=2
- http://marc.info/?l=bugtraq&m=112181242916757&w=2
- http://secunia.com/advisories/18493
- http://secunia.com/advisories/18608
- http://securitytracker.com/id?1014525
- http://securitytracker.com/id?1014527
- http://www.red-database-security.com/advisory/oracle_reports_read_any_file.html
- http://www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html
- http://www.securityfocus.com/archive/1/422256/30/7430/threaded
- http://www.vupen.com/english/advisories/2006/0323
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24321
Products affected by CVE-2005-2378
-
cpe:2.3:a:oracle:reports:-
-
cpe:2.3:a:oracle:reports:10g
-
cpe:2.3:a:oracle:reports:6.0
-
cpe:2.3:a:oracle:reports:6.0.8
-
cpe:2.3:a:oracle:reports:6.0.8.19
-
cpe:2.3:a:oracle:reports:6i
-
cpe:2.3:a:oracle:reports:9.0.2
-
cpe:2.3:a:oracle:reports:9i