CVE-2008-5448

Oracle Secure Backup <10.2.0.2 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2008-5444 and CVE-2008-5449.

Exploits (1)

metasploit WORKING POC

by MC · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/oracle/osb_execqr.rb

View Code ZIP pw:eip

References (4)

[Permissions Required] http://secunia.com/advisories/33525

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/33177

[Not Applicable] http://www.vupen.com/english/advisories/2009/0115

Scores

EPSS 0.8177

EPSS Percentile 99.2%

Classification

Status draft

Affected Products (1)

oracle/secure_backup

Timeline

Published Jan 14, 2009

Tracked Since Feb 18, 2026