2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2005-3204" ,
"sourceIdentifier" : "cve@mitre.org" ,
"published" : "2005-10-14T10:02:00.000" ,
2024-11-21 23:11:37 +00:00
"lastModified" : "2024-11-21T00:01:21.040" ,
2023-04-24 12:24:31 +02:00
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Cross-site scripting (XSS) vulnerability in Oracle XML DB 9iR2 allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP request."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:M/Au:N/C:N/I:P/A:N" ,
2024-11-21 23:11:37 +00:00
"baseScore" : 4.3 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "MEDIUM" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "PARTIAL" ,
2024-11-21 23:11:37 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 8.6 ,
"impactScore" : 2.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-Other"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CFAE1E8A-644B-42FD-B149-89AD420BD7A7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2.0.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8075E330-5819-4105-9BB7-4DCC3C0EAEF9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CB346764-EDF2-4BE1-A273-C2CE9A173CFB"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E59B89D9-AAF9-40CB-931C-EB4958491B99"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C64888FB-133F-4930-8368-1BD2A4FB11A6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.2.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "87DEB7BD-FB71-4C22-A0FF-89923B263DC2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BAAD1A33-4333-4AFB-8D49-1274AE345BA9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.0.3.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "852BF209-3C6F-403B-920D-50C46D37515B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:application_server:9.2.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DB37CB05-942B-460C-8F1E-2098A4B5F6AE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:client_9.2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DFAA7E8B-263B-40A2-B6D8-8A303A7D4358"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:client_9.2.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "085FF0CB-B426-4DCB-9411-017A45280A60"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:developer_9.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "68AC36E8-211F-4E0B-A486-2511521D9B51"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2201796B-013B-4440-B366-1F2966AA86FF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "43C6FFA8-18A6-4EE1-BE10-A1B7F3C1A47E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F90F6C4F-CEF5-4172-97FC-617B71EAA636"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5_fips:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "61ECB215-482D-4E47-A1CE-169ADE17812B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E121A29C-C1EB-47F9-B220-5B5C9EFA9A45"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2FFA2A5C-B289-4505-85F5-7F6F0222B552"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4E876825-D6E5-4958-B737-4CE43A32BEC0"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B8E07567-754A-40C0-9428-D151880EE6F2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6233345D-5100-404A-9B61-524D9679D9E4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2FB739C3-A9BD-433F-8547-12BC615DB18D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7231B057-9B7E-43CA-9E91-6DF74D6ADAE7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3D9B1EAF-ED2D-4B3A-9EB7-5FEB9E6B684C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "58DB0B6B-EB97-448A-B63E-E5997382DD45"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.0.1.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DA77BC6D-661F-46E9-B144-1587C1192B8A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "16F9C7F3-8140-4FEF-8319-64CE51B830AE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5_fips:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0F843A2C-2FC8-44E0-84C0-E20186A979CA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "957E3BDA-D69B-4FD8-B72A-E8D7C3AB5833"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "68286D06-9EBA-4FBD-AB0B-D80993895416"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0C059683-E0A1-4E97-B393-CB6B0EACF7C6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A5675664-7036-48D0-9524-0350F626D4CD"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EA9F3EE8-DA8B-4605-B70B-CFCA25B07C1F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D0DE0FB4-3C1A-460D-B48E-11D7AF415A94"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "597EE9ED-6A95-46C7-BE83-ADEC6AA65341"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:personal_9.2.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "50411FCF-8173-458D-B18A-4F7DE7E81A3D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6E46FE2E-CA1A-4970-81FF-0BFFF2CF6849"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3EE7A2B1-A161-4A20-9EEC-B1EF7F2E387C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D65D66A0-23F7-4110-AF71-05CBFB3F92F3"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F207CBC6-D186-418D-8F11-3E623530E00B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2FB2708A-58D1-4F17-8504-3748D6667788"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E83B1C7A-287A-405F-B44E-85F891183D2E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5_fips:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "015C96B0-1B89-4ECA-B1BB-AEFFC398088C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "34FC1E19-8F20-4215-8D90-E42EF7126BD9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BE456956-255F-4BA6-B830-356512B5D2C4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CB172848-A873-4137-A335-AD034806A5EE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B78BD7D2-7B48-438C-8C24-01C4007C1A32"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0DDCC0D1-32AD-4902-8383-2AA169C3F3BA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2D4D70A8-A6FE-4F82-82F1-AB1E9C28FB35"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7F64908D-FDAA-499B-8060-8A6EC2443418"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E77BCF6E-0D09-4DAF-B147-D11FEEE7371C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E61851FB-AC6F-4E56-8CA8-F8CE97D65364"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:oracle:oracle9i:standard_9.2.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "99255D3E-41FF-4D2F-A11B-9563997F4110"
}
]
}
]
}
] ,
"references" : [
{
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0177.html" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://marc.info/?l=bugtraq&m=112870541502542&w=2" ,
"source" : "cve@mitre.org"
} ,
2024-04-04 08:46:00 +00:00
{
"url" : "http://secunia.com/advisories/15991/" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Patch" ,
"Vendor Advisory"
]
} ,
2023-04-24 12:24:31 +02:00
{
"url" : "http://securityreason.com/securityalert/66" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Vendor Advisory"
]
} ,
2024-04-04 08:46:00 +00:00
{
"url" : "http://www.osvdb.org/20054" ,
"source" : "cve@mitre.org"
} ,
2023-04-24 12:24:31 +02:00
{
"url" : "http://www.red-database-security.com/advisory/oracle_xmldb_css.html" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securityfocus.com/bid/15034" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Exploit"
]
} ,
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/22541" ,
"source" : "cve@mitre.org"
2024-11-21 23:11:37 +00:00
} ,
{
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0177.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://marc.info/?l=bugtraq&m=112870541502542&w=2" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/15991/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Patch" ,
"Vendor Advisory"
]
} ,
{
"url" : "http://securityreason.com/securityalert/66" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.osvdb.org/20054" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.red-database-security.com/advisory/oracle_xmldb_css.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securityfocus.com/bid/15034" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Exploit"
]
} ,
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/22541" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
2023-04-24 12:24:31 +02:00
}
]
}
