9
CVE-2006-5339
- EPSS 3.09%
- Veröffentlicht 18.10.2006 01:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB11. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB11 is related to "length checking" in the RELATE function before MD2.RELATE is called.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Oracle ≫ Database Server Version8.1.7.4
Oracle ≫ Database Server Version9.0.1.5
Oracle ≫ Database Server Version9.2.0.7
Oracle ≫ Database Server Version10.1.0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.09% | 0.86 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9 | 8 | 10 |
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
http://secunia.com/advisories/22396
http://securitytracker.com/id?1017077
http://www.databasesecurity.com/oracle/OracleOct2006-CPU-Analysis.pdf
http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html
http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
http://www.securityfocus.com/archive/1/449110/100/0/threaded
http://www.securityfocus.com/archive/1/449711/100/0/threaded
http://www.securityfocus.com/bid/20588
http://www.us-cert.gov/cas/techalerts/TA06-291A.html
http://www.vupen.com/english/advisories/2006/4065