Oracle Database Server Buffer Overflow In Multiple Procedures Of DBMS_SNAP_INTERNAL Package
Gravité: : Critique
Identifiant(s) CVE: : CVE-2007-2116
Date du conseil: 21 juillet 2015
Description
Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.2.0.1 has unknown impact and attack vectors, aka DB10. NOTE: as of 20070424, Oracle has not disputed claims that these are buffer overflows in kkzi.o for the SYS.DBMS_SNAP_INTERNAL package using the (1) SNAP_OWNER or (2) SNAP_NAME parameters.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000988
Trend Micro Deep Security DPI Rule Name: 1000988 - Oracle Database Server Buffer Overflow In Multiple Procedures Of DBMS_SNAP_INTERNAL Package
Affected software and version:
- Oracle Oracle Database 10.2.0.1
- Oracle Oracle Database 9.0.1.5
- Oracle Oracle Database 9.2.0.7