Vulnerability in Oracle HTTP Server and E-Business Suite Affecting SSL and HTTPS
CVE-2006-5348

Currently unrated

Key Information:

Vendor: Oracle
Status: E-business Suite; Collaboration Suite; Http Server
Vendor: CVE Published:; 18 October 2006

What is CVE-2006-5348?

An unspecified vulnerability exists in Oracle HTTP Server and other Oracle products, potentially allowing for exploitation through remote attack vectors associated with HTTPS and SSL. This flaw might allow attackers to affect communications and data integrity, putting sensitive information at risk. It is crucial for organizations using these Oracle products to evaluate the security implications and take necessary precautions.

References

http://www.red-database-security.com/advisory/oracle_cpu_...

x_refsource_MISC

http://www.securityfocus.com/bid/20588

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/449711/100/0/threaded

vendor-advisoryx_refsource_HP

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 18, 2006
Vulnerability Reserved
Oct 17, 2006