Back to search
CVE-2010-3584
Published: Oct 14, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in the Oracle VM component in Oracle VM 2.2.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to ovs-agent. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a third party researcher that this is related to the storage of passwords and password hashes in cleartext in files with insecure permissions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20101102 [Onapsis Security Advisory 2010-010] Oracle Virtual Server Agent Local Privilege Escalation
mailing-list
x_refsource_BUGTRAQ
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
x_refsource_CONFIRM
TA10-287A
third-party-advisory
x_refsource_CERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now