Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5506

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2007-5506
Last Modified 22 Oct 2012 10:36:39
Published 17 Oct 2007 07:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5506

Summary

The Core RDBMS component in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote attackers to cause a denial of service (CPU consumption) via a crafted type 6 Data packet, aka DB20.

Vulnerable Systems

Application

  • Oracle Database Server 10.1.0.5

  • Oracle Database Server 10.2.0.3

  • Oracle Database Server 9.0.1.5

  • Oracle Database Server 9.2.0.8

  • Oracle Database Server 9.2.0.8dv


References

CERT - TA07-290A

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2007.html

VUPEN - ADV-2007-3626

VUPEN - ADV-2007-3524

SECTRACK - 1018823

BID - 26108

BUGTRAQ - 20071017 Oracle RDBMS TNS Data packet DoS

SECUNIA - 27251

HP - HPSBMA02133

SREASON - 3244

SECUNIA - 27409

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html

HP - SSRT061201


Last Updated: 27 May 2016 11:01:12