Severity: : Medium
  CVE Kennungen: : CVE-2007-4517
  Advisory Date: 21 de июля de 2015

  DESCRIPTION

Buffer overflow in the XDB.XDB_PITRIG_PKG.PITRIG_DROPMETADATA procedure in Oracle 10g R2 allows remote authenticated users to execute arbitrary code via a long (1) OWNER or (2) NAME argument.

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1001167
  Trend Micro Deep Security DPI Rule Name: 1001167 - Oracle Database Server XDB PITRIG_DROPMETADATA Procedure Buffer Overflow

  AFFECTED SOFTWARE AND VERSION:

  • Oracle Oracle10g Database Server Release 2