SQL Injection Vulnerability in Oracle Database Components
CVE-2008-5439

Currently unrated

Key Information:

Vendor: Oracle
Status: Database 10g
Vendor: CVE Published:; 14 January 2009

Summary

An unspecified vulnerability in the SQL*Plus Windows GUI component of Oracle Database 10.2.0.4 enables remote authenticated users to potentially compromise data confidentiality through unknown vectors. This issue necessitates critical security measures to mitigate risks associated with unauthorized access to sensitive information.

References

http://osvdb.org/51350

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/33525

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1021561

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 14, 2009
Vulnerability Reserved
Dec 11, 2008