CVE-2004-1366

Currently unrated

Key Information:

Vendor: Oracle
Status: Oracle10g; Oracle8i; Oracle9i; Collaboration Suite
Vendor: CVE Published:; 4 August 2004

Summary

Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18661

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/385323

mailing-listx_refsource_BUGTRAQ

http://www.kb.cert.org/vuls/id/316206

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Jan 7, 2005
Vulnerability published
Aug 4, 2004