This document provides the text form of the CVE-2012-3132 Advisory Risk Matrices. Please note that the CVE numbers in this document correspond to the same CVE numbers in the CVE-2012-3132 Advisory
This page contains the following text format Risk Matrices:
|CVE-2012-3132||Vulnerability in the Core RDBMS component of Oracle Database Server. This vulnerability requires Create session, create table privileges for a successful attack. Supported versions that are affected are 10.2.0.3, 10.2.0.4, 10.2.0.5, 188.8.131.52, 184.108.40.206 and 220.127.116.11. Easily exploitable vulnerability allows successful authenticated network attacks via Oracle NET. Successful attack of this vulnerability can result in unauthorized takeover of Core RDBMS possibly including arbitrary code execution within the Core RDBMS. |
Note: 18.104.22.168 and 22.214.171.124 do not require patching if the July 2012 Critical Patch Update has been applied.
CVSS Base Score 6.5 (Confidentiality, Integrity and Availability impacts). CVSS V2 Vector: (AV:N/AC:L/Au:S/C:P/I:P/A:P). (legend) [Advisory]