CVE-2012-3137
medium
CVSS v3
—
CVSS v2
6.4
VIR risk
6.4
Description
The authentication protocol in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote attackers to obtain the session key and salt for arbitrary users, which leaks information about the cryptographic hash and makes it easier to conduct brute force password guessing attacks, aka "stealth password cracking vulnerability."
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| oracle | database_server | 10.2.0.3 | |
| oracle | database_server | 10.2.0.4 | |
| oracle | database_server | 10.2.0.5 | |
| oracle | database_server | 11.1.0.7 | |
| oracle | database_server | 11.2.0.2 | |
| oracle | database_server | 11.2.0.3 | |
| oracle | primavera_p6_enterprise_project_portfolio_management | 8.2 | |
| oracle | primavera_p6_enterprise_project_portfolio_management | 8.3 | |
| oracle | primavera_p6_enterprise_project_portfolio_management | 8.4 | |
References
- http://arstechnica.com/security/2012/09/oracle-database-stealth-password-cracking-vulnerability/
- http://threatpost.com/en_us/blogs/flaw-oracle-logon-protocol-leads-easy-password-cracking-092012?utm_source=Threatpost&utm_medium=Tabs&utm_campaign=Today%27s+Most+Popular
- http://www.darkreading.com/authentication/167901072/security/application-security/240007643/attack-easily-cracks-oracle-database-passwords.html
- http://www.exploit-db.com/exploits/22069
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
- http://www.securityfocus.com/bid/55651
- http://arstechnica.com/security/2012/09/oracle-database-stealth-password-cracking-vulnerability/
- http://threatpost.com/en_us/blogs/flaw-oracle-logon-protocol-leads-easy-password-cracking-092012?utm_source=Threatpost&utm_medium=Tabs&utm_campaign=Today%27s+Most+Popular
- http://www.darkreading.com/authentication/167901072/security/application-security/240007643/attack-easily-cracks-oracle-database-passwords.html
- http://www.exploit-db.com/exploits/22069
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
- http://www.securityfocus.com/bid/55651
CWEs
CWE-287
Verify integrity in audit chain (admin only). AS-IS.