VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 18, 2006· Updated Apr 23, 2026

CVE-2006-5357

CVE-2006-5357

Description

Unspecified vulnerability in Oracle HTTP Server component in Oracle Application Server 10.1.2.0.1, 10.1.2.0.2, and 10.1.2.1.0 has unknown impact and remote attack vectors related to the PHP Module, aka Vuln# OHS03.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Unspecified vulnerability in Oracle HTTP Server PHP Module allows remote attacks; impact unknown, fixed in Oracle Critical Patch Update October 2006.

Vulnerability

The vulnerability is an unspecified issue in the PHP Module of Oracle HTTP Server, a component of Oracle Application Server. Affected versions include 10.1.2.0.1, 10.1.2.0.2, and 10.1.2.1.0. The exact nature of the bug is not disclosed.

Exploitation

The vulnerability is remotely exploitable without authentication, as per the description. No further details on the attack vector or required conditions are available in the references.

Impact

The impact is unknown; the advisory does not specify the consequences of successful exploitation. Potential impacts could range from information disclosure to denial of service or code execution, but no confirmation exists.

Mitigation

Oracle released a fix as part of the Critical Patch Update (CPU) for October 2006 [1]. Users should apply the appropriate patch from Oracle. No workarounds are documented.

References
  1. Details Oracle Critical Patch Update October 2006

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

5

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

News mentions

0

No linked articles in our index yet.