4

CVE-2008-1820

EPSS 1.69%
Published 16.04.2008 10:05:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in the Data Pump component in Oracle Database 9.2.0.8, 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote attack vectors related to KUPF$FILE_INT, aka DB11.  NOTE: the previous information was obtained from the April 2008 CPU.  Oracle has not commented on reliable researcher claims that DB11 is for a buffer overflow in the SYS.KUPF$FILE_INT.GET_FULL_FILENAME procedure.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Oracle ≫ Database 10g Version10.1.0.5

Oracle ≫ Database 10g Version10.2.0.3

Oracle ≫ Database 11g Version11.1.0.6

Oracle ≫ Database 9i Version9.2.0.8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.69%	0.814

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P

http://secunia.com/advisories/29829

Vendor Advisory

http://secunia.com/advisories/29874

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html

http://www.securityfocus.com/archive/1/491024/100/0/threaded

http://www.securitytracker.com/id?1019855

http://www.vupen.com/english/advisories/2008/1233/references

Vendor Advisory

http://www.vupen.com/english/advisories/2008/1267/references

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/41858

http://www.securityfocus.com/archive/1/491524/30/390/threaded

https://exchange.xforce.ibmcloud.com/vulnerabilities/42036

https://nvd.nist.gov/vuln/detail/CVE-2008-1820

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-1820

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-1820

EUVD