CVE-2006-7141
published 2007-03-07CVE-2006-7141: Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges…
PriorityP432medium6CVSS 2.0
AVNACMAuSCPIPAP
EXPLOIT
EPSS
5.65%
92.0th percentile
Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utl_file functions such as (1) utl_file.put_line and (2) utl_file.get_line, a related issue to CVE-2005-0701. NOTE: this issue is disputed by third parties who state that this is due to an insecure configuration instead of an inherent vulnerability
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | database_server | — | — |
| oracle | database_server | — | — |
| oracle | database_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-j3hv-8587-44rm: Oracle Database Server 10
ghsa_unreviewed·2022-05-14·CVSS 6.0
CVE-2008-6065 [MEDIUM] GHSA-j3hv-8587-44rm: Oracle Database Server 10
Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the password directory, and then overwriting the password file through UTL_FILE operations, a related issue to CVE-2006-7141.
GHSA
GHSA-26r9-9grm-j62r: ** DISPUTED ** Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY
ghsa_unreviewed·2022-05-01·CVSS 5.0
CVE-2006-7141 [MEDIUM] GHSA-26r9-9grm-j62r: ** DISPUTED ** Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY
** DISPUTED ** Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utl_file functions such as (1) utl_file.put_line and (2) utl_file.get_line, a related issue to CVE-2005-0701. NOTE: this issue is disputed by third parties who state that this is due to an insecure configuration instead of an inherent vulnerability.
No detection rules found.
No writeups or analysis indexed.
http://www.0xdeadbeef.info/exploits/raptor_orafile.sqlhttp://www.securityfocus.com/archive/1/454862/100/0/threadedhttp://www.securityfocus.com/archive/1/454964/100/0/threadedhttp://www.securityfocus.com/archive/1/455047/100/0/threadedhttp://www.0xdeadbeef.info/exploits/raptor_orafile.sqlhttp://www.securityfocus.com/archive/1/454862/100/0/threadedhttp://www.securityfocus.com/archive/1/454964/100/0/threadedhttp://www.securityfocus.com/archive/1/455047/100/0/threaded
2007-03-07
Published