Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9
CVSSv2

CVE-2006-5341

Published: 18/10/2006 Updated: 17/10/2018
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
VMScore: 801
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Oracle

Vulnerability Summary

Multiple unspecified vulnerabilities in XMLDB component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.2 have unknown impact and remote authenticated attack vectors, aka (1) Vuln# DB14 and (2) DB15 related to xdb.dbms_xdbz. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB14 is for SQL injection in the PITRIG_DROP and PITRIG_DROPMETADATA functions in XDB_PITRIG_PKG, and DB15 is for SQL injection in DISABLE_HIERARCHY_INTERNAL in DBMS_XDBZ.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle database server 10.1.0.5

oracle database server 10.2.0.2

oracle database server 9.2.0.7

References

NVD-CWE-noinfohttp://www.securityfocus.com/bid/20588http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-291A.htmlhttp://securitytracker.com/id?1017077http://secunia.com/advisories/22396http://www.databasesecurity.com/oracle/OracleOct2006-CPU-Analysis.pdfhttp://www.kb.cert.org/vuls/id/318764http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_xdbz0.htmlhttp://www.vupen.com/english/advisories/2006/4065http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.htmlhttp://www.securityfocus.com/archive/1/449711/100/0/threadedhttp://www.securityfocus.com/archive/1/449510/100/0/threadedhttp://www.securityfocus.com/archive/1/449110/100/0/threadedhttps://nvd.nist.govhttps://www.kb.cert.org/vuls/id/318764
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
IMAPCVE-2024-4367server-side request forgeryinformation disclosureCVE-2024-34342CVE-2024-4281CVE-2024-3507CVE-2024-25560CVE-2024-34574
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook