Multiple Vulnerabilities in Oracle Database Products
CVE-2008-1817

Currently unrated

Key Information:

Vendor: Oracle
Status: Database Server; Database 9i
Vendor: CVE Published:; 16 April 2008

What is CVE-2008-1817?

Multiple undefined vulnerabilities exist within various versions of Oracle Database. Specifically, these vulnerabilities link to the Spatial component (SDO_IDX) and Core RDBMS. Exploitation could potentially lead to unauthorized access or loss of data integrity, with claims suggesting SQL injection weaknesses in these components. Oracle has acknowledged these issues but has not confirmed all specifics, leaving some technical details about potential attack vectors ambiguous.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/41858

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2008/1267/references

vdb-entryx_refsource_VUPEN

http://www.vupen.com/english/advisories/2008/1233/references

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 16, 2008
Vulnerability Reserved
Apr 15, 2008