CVE-2006-5356
First published: Wed Oct 18 2006(Updated: )
Unspecified vulnerability in Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.1.0, and Collaboration Suite 9.0.4.2 and 10.1.2, has unknown impact and remote attack vectors, aka Vuln# OC4J02.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Application Server | =10.1.2.0.2 | |
| Oracle Application Server | =10.1.2.1.0 | |
| Oracle Application Server | =9.0.4.3 | |
| Oracle Collaboration Suite 10g release 1 | =10.1.2.0 | |
| Oracle Collaboration Suite 10g release 1 | =9.0.4.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/20588
- http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
- http://www.us-cert.gov/cas/techalerts/TA06-291A.html
- http://securitytracker.com/id?1017077
- http://secunia.com/advisories/22396
- http://www.vupen.com/english/advisories/2006/4065
- http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html
- http://www.securityfocus.com/archive/1/449711/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2006-5356?
CVE-2006-5356 has an unspecified severity level due to its unknown impact and potential remote attack vectors.
How do I fix CVE-2006-5356?
To mitigate CVE-2006-5356, it is recommended to apply any available security patches from Oracle for affected versions.
Which versions are affected by CVE-2006-5356?
CVE-2006-5356 affects Oracle Application Server versions 9.0.4.3, 10.1.2.0.2, and 10.1.2.1.0, as well as Oracle Collaboration Suite versions 9.0.4.2 and 10.1.2.0.
Is there a workaround for CVE-2006-5356?
As of this time, no specific workarounds are documented for CVE-2006-5356, so patching is the recommended approach.
What types of attacks can exploit CVE-2006-5356?
CVE-2006-5356 has remote attack vectors, but the exact nature of the attacks is unspecified.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/remedy
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/oracle
- canonical/oracle application server
- version/oracle application server/10.1.2.0.2
- version/oracle application server/10.1.2.1.0
- version/oracle application server/9.0.4.3
- canonical/oracle collaboration suite 10g release 1
- version/oracle collaboration suite 10g release 1/10.1.2.0
- version/oracle collaboration suite 10g release 1/9.0.4.2