CVE-2006-5339Oracle Database Server vulnerability

3 documents3 sources
Severity
9.0CRITICALNVD
EPSS
5.7%
top 9.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedOct 18
Latest updateMay 1

Description

Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB11. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB11 is related to "length checking" in the RELATE function before MD2.RELATE is called.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

NVDoracle/database_server4 versions+3

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-xf5p-4h3g-8rfg: Unspecified vulnerability in Oracle Spatial component in Oracle Database 82022-05-01
CVEList
CVE-2006-5339: Unspecified vulnerability in Oracle Spatial component in Oracle Database 82006-10-18
CVE-2006-5339 — Oracle Database Server vulnerability | cvebase