CVE-2006-1874
published 2006-04-20CVE-2006-1874: Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors in the Oracle Spatial component, aka…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors in the Oracle Spatial component, aka Vuln# DB09. NOTE: Oracle has not disputed reliable claims that this issue is SQL injection in MDSYS.PRVT_IDX using the (1) EXECUTE_INSERT, (2) EXECUTE_DELETE, (3) EXECUTE_UPDATE, (4) EXECUTE UPDATE, and (5) CRT_DUMMY functions.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | database_server | — | — |
| oracle | database_server | — | — |
| oracle | database_server | — | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/19712http://secunia.com/advisories/19859http://securitytracker.com/id?1015961http://www.oracle.com/technetwork/topics/security/cpuapr2006-090826.htmlhttp://www.red-database-security.com/advisory/oracle_cpu_apr_2006.htmlhttp://www.securityfocus.com/archive/1/432267/100/0/threadedhttp://www.securityfocus.com/bid/17590http://www.vupen.com/english/advisories/2006/1397http://www.vupen.com/english/advisories/2006/1571https://exchange.xforce.ibmcloud.com/vulnerabilities/26053http://secunia.com/advisories/19712http://secunia.com/advisories/19859http://securitytracker.com/id?1015961http://www.oracle.com/technetwork/topics/security/cpuapr2006-090826.htmlhttp://www.red-database-security.com/advisory/oracle_cpu_apr_2006.htmlhttp://www.securityfocus.com/archive/1/432267/100/0/threadedhttp://www.securityfocus.com/bid/17590http://www.vupen.com/english/advisories/2006/1397http://www.vupen.com/english/advisories/2006/1571https://exchange.xforce.ibmcloud.com/vulnerabilities/26053
2006-04-20
Published