CyberSec.Space Logo
Back to CVE Browser

CVE-2010-4449

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1460%
EPSS Percentile35.29th
PublishedJan 19, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

Unspecified vulnerability in the Audit Vault component in Oracle Audit Vault 10.2.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this issue is related to a crafted parameter in an action.execute request to the av component on TCP port 5700.

Affected Platforms (CPE)

πŸ“¦
Oracle

Audit Vault

= 10.2.3.2

References & Advisories

πŸ”— http://osvdb.org/70583
πŸ”— http://secunia.com/advisories/42919
πŸ”— http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
πŸ”— http://www.securityfocus.com/bid/45844
πŸ”— http://www.securitytracker.com/id?1024973
πŸ”— http://www.vupen.com/english/advisories/2011/0141
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-11-017/
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/64762

Related Vulnerabilities

CVE-2010-308510.0

The network-play implementation in Mednafen before 0.8.D might allow remote servers to execute arbitrary code via unspecified vect...

CVE-2010-355610.0

Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1....

CVE-2010-355210.0

Unspecified vulnerability in the New Java Plug-in component in Oracle Java SE and Java for Business 6 Update 21 allows remote atta...

CVE-2010-356210.0

Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1....