|
Oracle Products Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA34693
|
|
|
Release Date:
|
2009-04-15
|
|
Last Update:
|
2009-08-31
|
|
Popularity:
|
4,352 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Unknown
Manipulation of data
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Oracle Application Server 10g
Oracle BI Publisher 10.x
Oracle Database 10.x
Oracle Database 11.x
Oracle E-Business Suite 11i
Oracle E-Business Suite 12.x
Oracle Outside In HTML Export 8.x
Oracle PeopleSoft Enterprise Human Resource Management System 8.x
Oracle PeopleSoft Enterprise Human Resource Management System 9.x
Oracle PeopleSoft Enterprise Tools 8.x
Oracle XML Publisher 5.x
Oracle9i Database Enterprise Edition
Oracle9i Database Standard Edition
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Some vulnerabilities have been reported in various Oracle products. Some have unknown impacts, others can be exploited by malicious users to conduct SQL injection attacks, disclose sensitive information, or compormise a vulnerable system, and by malicious people to compromise a vulnerable system.
1) A format string error exists within the Oracle Process Manager and Notification (opmn) daemon, which can be exploited to execute arbitrary code via a specially crafted POST request to port 6000/TCP.
2) Input passed to the "DBMS_AQIN" package is not properly sanitised before being used. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
3) An error in the Application Express component included in Oracle Database can be exploited by unprivileged database users to disclose APEX password hashes in "LOWS_030000.WWV_FLOW_USER".
4) Input passed to the "DBMS_AQADM_SYS" package is not properly sanitised before being used. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
5) Input passed to the "ROLLBACKWORKSPACE" procedure within the "LT" PL/SQL package of the Oracle Workspace Manager component is not properly sanitised before being used. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
6) Two boundary errors exist within Oracle's Outside In Technology when processing Microsoft Excel spreadsheet files. This can be exploited to cause stack-based buffer overflows by sending specially crafted Microsoft Excel files to an application using the conversion engine.
7) Various integer overflow errors exist within Oracle's Outside In Technology when processing certain optional data streams in Microsoft Office files. This can be exploited to cause heap-based buffer overflows by e.g. sending specially crafted Microsoft Office documents to an application using the conversion engine.
8) An integer overflow error exists within Oracle's Outside In Technology when processing Microsoft Excel spreadsheet files. This can be exploited to cause heap-based buffer overflows by sending specially crafted Microsoft Excel files to an application using the conversion engine.
9) A boundary error exists within Oracle's Outside In Technology when processing certain records in Microsoft Excel spreadsheet files. This can be exploited to cause a stack-based buffer overflow by sending specially crafted Microsoft Excel files to an application using the conversion engine.
10) The application fails to properly track user passwords if 11g passwords are exclusively enabled. This can potentially result in the same password being used multiple times.
11) A boundary error exists in Oracle Database when processing the plan name parameter used in the "ALTER SYSTEM SET RESOURCE_MANAGER_PLAN" statement and in the "SYS.DBMS_RESOURCE_MANAGER.SWITCH_PLAN" procedure. This can be exploited to cause a buffer overflow and potentially execute arbitrary code.
Successful exploitation of this vulnerability requires "ALTER SYSTEM" privileges.
The remaining vulnerabilities are caused due to unspecified errors. No more information is currently available.
The vulnerabilities are reported in the following products and versions:
* Oracle Database 11g, version 11.1.0.6, 11.1.0.7
* Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4
* Oracle Database 10g, version 10.1.0.5
* Oracle Database 9i Release 2, versions 9.2.0.8, 9.2.0.8DV
* Oracle Application Server 10g Release 2 (10.1.2), version 10.1.2.3.0
* Oracle Outside In SDK HTML Export 8.2.2, 8.3.0
* Oracle XML Publisher 5.6.2, 10.1.3.2, 10.1.3.2.1
* Oracle BI Publisher 10.1.3.3.0 10.1.3.3.1, 10.1.3.3.2, 10.1.3.3.3, 10.1.3.4
* Oracle E-Business Suite Release 12, version 12.0.6
* Oracle E-Business Suite Release 11i, version 11.5.10.2
* PeopleSoft Enterprise PeopleTools versions: 8.49
* PeopleSoft Enterprise HRMS versions: 8.9 and 9.0
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
Today
|
New advisories:
|
6 |
|
New vulnerabilities:
|
24 |
|
Updated advisories:
|
7 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
27th Nov, 2009
|
New advisories:
|
8 |
|
New vulnerabilities:
|
15 |
|
Updated advisories:
|
11 |
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
