Unspecified Vulnerability in Oracle Database Affecting Oracle Spatial
CVE-2008-2600

Currently unrated

Key Information:

Vendor: Oracle
Status: Database Server; Oracle Database; Spatial Component
Vendor: CVE Published:; 15 July 2008

What is CVE-2008-2600?

An unspecified vulnerability exists in the Oracle Spatial component of the Oracle Database, potentially allowing remote authenticated attackers to exploit the system through the MDSYS.SDO_TOPO_MAP function. The full impact of this vulnerability is not clearly defined, which raises concerns about the security of the affected Oracle Database versions. Administrators should assess their environments and apply necessary security updates to mitigate any threats associated with this vulnerability.

References

http://www.oracle.com/technetwork/topics/security/cpujul2...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2008/2115

vdb-entryx_refsource_VUPEN

http://h20000.www2.hp.com/bizsupport/TechSupport/Document...

vendor-advisoryx_refsource_HP

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 15, 2008
Vulnerability Reserved
Jun 9, 2008