Denial of Service Vulnerability in Oracle Secure Backup by Oracle
CVE-2008-5445

Currently unrated

Key Information:

Vendor: Oracle
Status: Secure Backup
Vendor: CVE Published:; 14 January 2009

What is CVE-2008-5445?

An unspecified vulnerability in the Oracle Secure Backup component can allow remote attackers to disrupt the availability of the service. This issue potentially stems from malformed private protocol data used in observiced.exe, which may cause a NULL pointer dereference. The vulnerability was noted in Oracle Secure Backup version 10.2.0.2 and could lead to a significant denial of service, impacting the operational stability of the backup services offered by Oracle.

References

http://www.fortiguardcenter.com/advisory/FGA-2009-02.html

x_refsource_MISC

http://secunia.com/advisories/33525

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2009/0115

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 14, 2009
Vulnerability Reserved
Dec 11, 2008