Description
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Remediation
References
Related Vulnerabilities
Joomla Improper Privilege Management Vulnerability (CVE-2012-1563)
Apache Traffic Server Integer Overflow or Wraparound Vulnerability (CVE-2018-9481)
Oracle Database Server CVE-2013-3826 Vulnerability (CVE-2013-3826)
Oracle JRE CVE-2013-2456 Vulnerability (CVE-2013-2456)
WordPress Plugin Sign-up Sheets Cross-Site Scripting (1.0.13)