Plaintext Password Vulnerability in Oracle HTML DB Installation
CVE-2005-3203

Currently unrated

Key Information:

Vendor

Oracle
Status
Html Db
Vendor
CVE Published:
14 October 2005

What is CVE-2005-3203?

The installation process of Oracle HTML DB versions 1.3 through 1.3.6 contains a significant vulnerability where the SYS password is stored in the install.lst file in plaintext. This exposes sensitive credentials that allow local users to gain elevated privileges on the system, posing a risk to overall security. Proper management and secure installation procedures are essential to mitigate such vulnerabilities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/15033
vdb-entryx_refsource_BID
http://archives.neohapsis.com/archives/fulldisclosure/200...
mailing-listx_refsource_FULLDISC
http://secunia.com/advisories/14935/
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.