Description

The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.

Remediation

References

CVE-2005-0298

Related Vulnerabilities

WordPress Plugin iThemes Security (formerly Better WP Security) Multiple Cross-Site Scripting Vulnerabilities (3.4.3)

Oracle Database Server CVE-2012-1737 Vulnerability (CVE-2012-1737)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Information Disclosure (1.2.5)

Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1675)

MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-5612)

Severity

Medium

Classification

CVE-2005-0298

Tags

Missing Update Known Vulnerabilities