CVE-2006-5353
First published: Wed Oct 18 2006(Updated: )
Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0.0, and Oracle Collaboration Suite 9.0.4.2 and 10.1.2, has unknown impact and remote attack vectors related to the Mod_rewrite Module, aka Vuln# OHS01.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Java System Application Server | =10.1.2.0.2 | |
| Oracle Java System Application Server | =9.0.4.3 | |
| Oracle Collaboration Suite 10g release 1 | =10.1.2.0 | |
| Oracle Java System Application Server | =10.1.2.0.1 | |
| Oracle Collaboration Suite 10g release 1 | =9.0.4.2 | |
| =9.0.4.3 | ||
| =10.1.2.0.1 | ||
| =10.1.2.0.2 | ||
| =9.0.4.2 | ||
| =10.1.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/20588
- http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
- http://www.us-cert.gov/cas/techalerts/TA06-291A.html
- http://securitytracker.com/id?1017077
- http://secunia.com/advisories/22396
- http://www.vupen.com/english/advisories/2006/4065
- http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html
- http://www.securityfocus.com/archive/1/449711/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2006-5353?
The severity of CVE-2006-5353 is currently unspecified but relates to a vulnerability in the Oracle HTTP Server.
How do I fix CVE-2006-5353?
To fix CVE-2006-5353, it is advised to apply the latest security patches or updates provided by Oracle for affected software versions.
What software versions are affected by CVE-2006-5353?
CVE-2006-5353 affects Oracle Application Server versions 9.0.4.3 and 10.1.2.* as well as Oracle Collaboration Suite versions 9.0.4.2 and 10.1.2.*.
Can CVE-2006-5353 be exploited remotely?
Yes, CVE-2006-5353 has remote attack vectors that could potentially be exploited by attackers.
What is the Mod_rewrite Module in the context of CVE-2006-5353?
The Mod_rewrite Module is a component of the Oracle HTTP Server that is associated with the vulnerability outlined in CVE-2006-5353.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/remedy
- agent/weakness
- agent/first-publish-date
- agent/description
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/source
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/oracle
- canonical/oracle java system application server
- version/oracle java system application server/10.1.2.0.2
- version/oracle java system application server/9.0.4.3
- canonical/oracle collaboration suite 10g release 1
- version/oracle collaboration suite 10g release 1/10.1.2.0
- version/oracle java system application server/10.1.2.0.1
- version/oracle collaboration suite 10g release 1/9.0.4.2