| To: | shatter@appsecinc.com |
|---|---|
| Subject: | Re: Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME |
| From: | "Steven M. Christey" <coley@mitre.org> |
| Date: | Thu, 25 Jan 2007 14:36:19 -0500 (EST) |
| Cc: | bugtraq@securityfocus.com |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
>Any Oracle database user with EXECUTE privilege on the package >SYS.DBMS_LOGREP_UTIL can exploit this vulnerability. Exploitation of >this vulnerability allows an attacker to execute arbitrary code. This statement is inconsistent with Oracle's CPU, which states that DB08 (CVE-2007-0274) has Partial impact on availability, and no impact on Integrity and Confidentiality. >Affected versions: Oracle Database Server versions 9iR1, 9iR2 and >10gR1 DB08 reports 9iR2 as being the earliest affected version, which is another discrepancy. - Steve |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Omniture SiteCatalyst Multiple Cross-Site Scripting Vulnerabilities, DoZ |
|---|---|
| Next by Date: | Re: [Full-disclosure] 0trace - traceroute on established connections, Jon Oberheide |
| Previous by Thread: | Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME, Team SHATTER |
| Next by Thread: | Oracle Multiple Buffer Overflows and DoS attacks in public procedures of MDSYS.MD, Team SHATTER |
| Indexes: | [Date] [Thread] [Top] [All Lists] |