The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

computer vulnerability note CVE-2016-0682 CVE-2016-0689 CVE-2016-0692

Oracle Berkeley DB: five vulnerabilities of April 2016

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Oracle Berkeley DB.
Impacted products: Berkeley DB.
Severity of this bulletin: 3/4.
Consequences of an intrusion: privileged access/rights, user access/rights, data reading, data creation/edition, data deletion, denial of service on service, denial of service on client.
Hacker's origin: intranet client.
Number of vulnerabilities in this bulletin: 5.
Creation date: 20/04/2016.
Références of this threat: cpuapr2016, CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, CVE-2016-0694, CVE-2016-3418, VIGILANCE-VUL-19419.

Description of the vulnerability

Several vulnerabilities were announced in Oracle Berkeley DB.

An attacker can use a vulnerability of DataStore, in order to obtain information, to alter information, or to trigger a denial of service. [severity:3/4; CVE-2016-0682]

An attacker can use a vulnerability of DataStore, in order to obtain information, to alter information, or to trigger a denial of service. [severity:3/4; CVE-2016-0689]

An attacker can use a vulnerability of DataStore, in order to obtain information, to alter information, or to trigger a denial of service. [severity:3/4; CVE-2016-0692]

An attacker can use a vulnerability of DataStore, in order to obtain information, to alter information, or to trigger a denial of service. [severity:3/4; CVE-2016-0694]

An attacker can use a vulnerability of DataStore, in order to obtain information, to alter information, or to trigger a denial of service. [severity:3/4; CVE-2016-3418]
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides an application vulnerability bulletin. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce vulnerability database contains several thousand vulnerabilities.