Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/04/2008 Updated: 11/10/2018

CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8

VMScore: 490

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to DBMS_CDC_UTILITY, aka DB02. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on reliable researcher claims that DB02 is for SQL injection in LOCK_CHANGE_SET.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle database 10g 10.2.0.3
oracle database 11g 11.1.0.6
oracle database 10g 10.1.0.5

NVD-CWE-noinfo http://www.securitytracker.com/id?1019855 http://secunia.com/advisories/29874 http://secunia.com/advisories/29829 http://www.securityfocus.com/archive/1/491522/30/390/threaded http://www.vupen.com/english/advisories/2008/1267/references http://www.vupen.com/english/advisories/2008/1233/references http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html https://exchange.xforce.ibmcloud.com/vulnerabilities/41998 https://exchange.xforce.ibmcloud.com/vulnerabilities/41858 http://www.securityfocus.com/archive/1/491024/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-1815

Vulnerability Summary

References

Vulmon Search

About

Products

Connect