CVE-2005-3203

Medium

4.6/10

Summary

The manual installation of Oracle HTML DB (HTMLDB) 1.3 through 1.3.6 stores the SYS password in install.lst in plaintext, which allows local users to gain privileges.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Oct 14, 2005

CVE-2005-3203

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS