Oracle Jdeveloper : Security vulnerabilities, CVEs published in 2005

Copy

CVE-2005-2292

Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.

Max CVSS

2.1

EPSS Score

0.09%

Published

2005-07-18

Updated

2017-07-11

CVE-2005-2291

Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 passes the cleartext password as a parameter when starting sqlplus, which allows local users to gain sensitive information.

Max CVSS

4.6

EPSS Score

0.09%

Published

2005-07-18

Updated

2016-10-18

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!