Oracle Config Management SQL Injection Vulnerability
Severity: : Medium
CVE Kennungen: : CVE-2009-1966
DESCRIPTION
Unspecified vulnerability in the Config Management component in (1) Oracle Database 11.1.0.7 and (2) Oracle Enterprise Manager 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000608
Trend Micro Deep Security DPI Rule Name: 1000608 - Generic SQL Injection Prevention
AFFECTED SOFTWARE AND VERSION:
- oracle database_server 11.1.0.7
- oracle enterprise_manager 10.2.0.4