Test Kennung:	1.3.6.1.4.1.25623.1.0.802519
Kategorie:	Databases
Titel:	Oracle Database Server Upgrade and Downgrade Component Multiple Vulnerabilities
Zusammenfassung:	Oracle Database Server is prone to multiple vulnerabilities.
Beschreibung:	Summary: Oracle Database Server is prone to multiple vulnerabilities. Vulnerability Insight: The flaw is due to an error in the Upgrade/Downgrade component. Vulnerability Impact: Successful exploitation allows remote authenticated users to execute arbitrary SQL commands via unknown vectors. Affected Software/OS: Oracle Database Server versions 9.0.1.5, 9.2.0.7 and 10.1.0.5. Solution: Apply the patch from the referenced advisory. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2007-2113 BugTraq ID: 23532 http://www.securityfocus.com/bid/23532 Bugtraq: 20070418 Advisory: SQL Injection in package SYS.DBMS_UPGRADE_INTERNAL (Google Search) http://www.securityfocus.com/archive/1/466153/100/0/threaded Cert/CC Advisory: TA07-108A http://www.us-cert.gov/cas/techalerts/TA07-108A.html HPdes Security Advisory: HPSBMA02133 http://www.securityfocus.com/archive/1/466329/100/200/threaded HPdes Security Advisory: SSRT061201 http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_April_2007_Analysis.pdf http://www.ngssoftware.com/research/papers/NGSSoftware-OracleCPUAPR2007.pdf http://www.red-database-security.com/advisory/oracle_cpu_apr_2007.html http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_upgrade_internal.html http://www.securitytracker.com/id?1017927 http://www.vupen.com/english/advisories/2007/1426 Common Vulnerability Exposure (CVE) ID: CVE-2007-2118
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.