CVE-2004-1367

NONECVSS 0.0

0.0

Oracle 10g Database Server, when installed with a password that contains an exclamation point ("!") for the (1) DBSNMP or (2) SYSMAN user, generates an error that logs the password in the world-readable postDBCreation.log file, which could allow local users to obtain that password and use it against SYS or SYSTEM accounts, which may have been installed with the same password.

🔗 References (12)

cve@mitrehttp://marc.info/?l=bugtraq&m=110382247308064&w=2
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1
cve@mitrehttp://www.kb.cert.org/vuls/id/316206
cve@mitrehttp://www.ngssoftware.com/advisories/oracle23122004D.txt
cve@mitrehttp://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf
cve@mitrehttp://www.us-cert.gov/cas/techalerts/TA04-245A.html
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=110382247308064&w=2
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/316206
af854a3a-2127-422b-91ae-364da2661108http://www.ngssoftware.com/advisories/oracle23122004D.txt
af854a3a-2127-422b-91ae-364da2661108http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf
af854a3a-2127-422b-91ae-364da2661108http://www.us-cert.gov/cas/techalerts/TA04-245A.html

Is Your Infrastructure Affected by CVE-2004-1367?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2004-1367

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2004-1367?