CVE-2008-1817

Currently unrated

Key Information:

Vendor: Oracle
Status: Database Server; Database 9i
Vendor: CVE Published:; 16 April 2008

Summary

Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 have unknown impact and remote attack vectors related to (1) SDO_IDX in the Spatial component, aka DB07; and (2) Core RDBMS, aka DB10. NOTE: the previous information was obtained from the Oracle CPU. Oracle has not commented on reliable researcher claims that DB07 is SQL injection.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/41858

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2008/1267/references

vdb-entryx_refsource_VUPEN

http://www.vupen.com/english/advisories/2008/1233/references

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 16, 2008
Vulnerability Reserved
Apr 15, 2008