Oracle Config Management SQL Injection Vulnerability
Gravité: : Medium
Identifiant(s) CVE: : CVE-2009-1966
Description
Unspecified vulnerability in the Config Management component in (1) Oracle Database 11.1.0.7 and (2) Oracle Enterprise Manager 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000608
Trend Micro Deep Security DPI Rule Name: 1000608 - Generic SQL Injection Prevention
Affected software and version:
- oracle database_server 11.1.0.7
- oracle enterprise_manager 10.2.0.4