[NEWS] SQL Injection in package SYS.DBMS_CDC_IMPDP

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

The SecuriTeam alerts list - Free, Accurate, Independent.

Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html

- - - - - - - - -



SQL Injection in package SYS.DBMS_CDC_IMPDP
------------------------------------------------------------------------


SUMMARY

The package SYS.DBMS_CDC_IMPDP contains SQL injection vulnerabilities.
Oracle fixed this by using dbms_assert.

DETAILS

Patch Information:
Apply the patches for Oracle CPU October 2006.

History:
1-nov-2005 Oracle secalert was informed .
18-oct-2006 Oracle published CPU October 2006 [DB04]
18-oct-2006 Advisory published

CVE Information:
<http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5335>
CVE-2006-5335


ADDITIONAL INFORMATION

The information has been provided by
<mailto:ak@xxxxxxxxxxxxxxxxxxxxxxxxx> Alexander Kornbrust.
The original article can be found at:
<http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_cdc_impdp2.html> http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_cdc_impdp2.html



========================================


This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx


====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Relevant Pages

  • [NEWS] Oracle Webcache 9i Cross Site Scripting
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... 9i File Appending Vulnerability it is possible to corrupt the Oracle ...
    (Securiteam)
  • [NEWS] Oracle Webcache 9i File Appending Vulnerability (cache_dump_file)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... It is possible to corrupt any file of an Oracle Application Server ...
    (Securiteam)
  • [NEWS] Various Cross-Site-Scripting Vulnerabilities in Oracle Reports
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Various Cross-Site-Scripting Vulnerabilities in Oracle Reports ... The information in this bulletin is provided "AS IS" without warranty of any kind. ... In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. ...
    (Securiteam)
  • [NT] Microsoft Excel Length Parameter Parsing Buffer Overflow Vulnerability
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... * Microsoft Office XP Software (Excel 2002) ... * Microsoft Office v. X for Mac ...
    (Securiteam)
  • [NT] ZipGenius Directory Traversal
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... ZipGenius does not check before it unpacks a file, ... In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. ...
    (Securiteam)