Oracle Database Server DBMS_AQADM_SYS.DBLINK_INFO Buffer Overflow Vulnerability
Gravité: : Medium
Identifiant(s) CVE: : CVE-2007-5504
Date du conseil: 21 juillet 2015
Description
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and 10.1.0.5 unknown impact and remote attack vectors, related to (1) Import (DB01) and (2) Advanced Queuing (DB25). NOTE: as of 20071108, Oracle has not disputed reliable researcher claims that DB25 is for a buffer overflow in the DBLINK_INFO procedure in the DBMS_AQADM_SYS package.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1001196
Trend Micro Deep Security DPI Rule Name: 1001196 - Oracle Database Server DBMS_AQADM_SYS.DBLINK_INFO Buffer Overflow
Affected software and version:
- Oracle Oracle Database 10.1.0.5
- Oracle Oracle Database 9.0.1.5+