Published: 15/04/2009 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote malicious users to affect availability via unknown vectors, a different vulnerability than CVE-2009-1970.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle database 9i 9.2.0.8
oracle database 9i 9.2.0.8dv
oracle database 10g 10.1.0.5
oracle database 10g 10.2.0.4
oracle database 11g 11.1.0.7

# TNS Listener (Oracle RDBMS) exploit, cause trap in Listener process # (more precisely: in function memcpy() called from ncrfintn() function which is located in oranro11dll) # Successfully working with Oracle RDBMS Win32 111060 and Oracle RDBMS Win32 10203 with latest CPU patches applied # Vulnerability discovered by Dennis Yurichev &lt ...

Oracle RDBMS versions 10203 and 11106 TNS listener proof of concept exploit ...

NVD-CWE-noinfo http://www.us-cert.gov/cas/techalerts/TA09-105A.html http://www.securitytracker.com/id?1022052 http://secunia.com/advisories/34693 http://osvdb.org/53737 http://www.securityfocus.com/bid/34461 http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html https://exchange.xforce.ibmcloud.com/vulnerabilities/50026 https://nvd.nist.gov https://www.exploit-db.com/exploits/8507/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-0991

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect