CVE-2009-1977
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
14/07/2009
Last modified:
09/04/2025
Description
Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the July 2009 Oracle CPU. Oracle has not commented on claims from an independent researcher that this vulnerability allows attackers to bypass authentication via unknown vectors involving the username parameter and login.php.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:oracle:secure_backup:10.2.0.3:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://osvdb.org/55903
- http://secunia.com/advisories/35776
- http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
- http://www.securityfocus.com/bid/35672
- http://www.securitytracker.com/id?1022565=
- http://www.vupen.com/english/advisories/2009/1900
- http://www.zerodayinitiative.com/advisories/ZDI-09-058/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51761
- http://osvdb.org/55903
- http://secunia.com/advisories/35776
- http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
- http://www.securityfocus.com/bid/35672
- http://www.securitytracker.com/id?1022565=
- http://www.vupen.com/english/advisories/2009/1900
- http://www.zerodayinitiative.com/advisories/ZDI-09-058/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51761