| VID |
25049 |
| Severity |
40 |
| Port |
1521, ... |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The Oracle Database server, according to its version number, has multiple vulnerabilities(2). Oracle Database Server, Oracle Application Server, Oracle Collaboration Suite, Oracle E-Business and Applications, Oracle Enterprise Manager Grid Control, and Oracle PeopleSoft Applications are vulnerable to multiple unspecified vulnerabilities. Some vulnerabilities don't require authentication. Reportedly, any low privileged database user can execute functions with DBA privileges. Users with privileges to create or modify a function may inject a user-defined function in the vulnerable procedure and thus execute SQL statements with DBA privileges.
* Note: This check solely relied on the version number of the remote Oracle Database server to assess this vulnerability, so this might be a false positive.
* References:
http://www.oracle.com/technology/deploy/security/pdf/cpuapr2005.pdf
http://www.argeniss.com/research/OraALTER_MANUALLOG_CHANGE_SOURCEWorkaround.sql
http://www.securityfocus.com/archive/1/395699
http://www.securityfocus.com/archive/1/396135
http://www.appsecinc.com/resources/alerts/oracle/2005-05.html
http://www.ngssoftware.com/advisories/oracle-03.txt
* Platforms Affected:
Oracle Database Server Any version
Oracle Application Server Any version
Oracle Collaboration Suite Release 2
Oracle E-Business and Applications 11.0, 11i
Oracle Enterprise Manager Grid Control 10g
Oracle PeopleSoft Applications
Microsoft Windows Any version
Linux Any version
Unix Any version |
| Recommendation |
Oracle has released a Critical Patch Update to address these issues. Information regarding obtaining and applying an appropriate patch can be found in the Oracle Critical Patch Update Advisory dated April 2005 at http://www.oracle.com/technology/deploy/security/pdf/cpuapr2005.pdf |
| Related URL |
CVE-2003-0460,CVE-2003-0542,CVE-2003-0851,CVE-2003-0987,CVE-2004-0079,CVE-2004-0081,CVE-2004-0174,CVE-2004-0488,CVE-2004-0492 (CVE) |
| Related URL |
13145,13144,13139,13238,13236,13235,13234 (SecurityFocus) |
| Related URL |
(ISS) |
|
