CVE-2006-1705

Currently unrated

Key Information:

Vendor: Oracle
Status: Oracle10g; Oracle9i
Vendor: CVE Published:; 11 April 2006

Summary

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-A...

mailing-listx_refsource_FULLDISC

http://www.kb.cert.org/vuls/id/805737

third-party-advisoryx_refsource_CERT-VN

http://www.red-database-security.com/advisory/oracle_modi...

x_refsource_MISC

Timeline

Vulnerability published
Apr 11, 2006
Vulnerability Reserved
Apr 10, 2006