CVE-2007-4832
published 2007-09-12CVE-2007-4832: Format string vulnerability in CellFactor Revolution 1.03 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
3.70%
88.3th percentile
Format string vulnerability in CellFactor Revolution 1.03 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a malformed nickname.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| immersion_games | cellfactor_revolution | <= 1.03 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Oracle 9i/10g ACTIVATE_SUBSCRIPTION - SQL Injection (2)
exploitdb·2007-02-26
CVE-2005-4832 Oracle 9i/10g ACTIVATE_SUBSCRIPTION - SQL Injection (2)
Oracle 9i/10g ACTIVATE_SUBSCRIPTION - SQL Injection (2)
---
#!/usr/bin/perl
#
# Remote Oracle DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION exploit (9i/10g)
# - Version 2 - New "evil cursor injection" tip!
# - No "create procedure" privileg needed!
# - See: http://www.databasesecurity.com/ (Cursor Injection)
#
# Grant or revoke dba permission to unprivileged user
#
# Tested on "Oracle Database 10g Enterprise Edition Release 10.1.0.3.0"
#
# REF: http://www.securityfocus.com/archive/1/396133
#
# AUTHOR: Andrea "bunker" Purificato
# http://rawlab.mindcreations.com
#
# DATE: Copyright 2007 - Mon Feb 26 12:13:19 CET 2007
#
# Oracle InstantClient (basic + sdk) required for DBD::Oracle
#
#
# bunker@fin:~$ perl dbms_cdc_subscribeV2.pl -h localhost -s test -u bunker -p **** -r
# [-] Wait...
# [-] Revo
Exploit-DB
Oracle 9i/10g - ACTIVATE_SUBSCRIPTION SQL Injection
exploitdb·2007-02-23
CVE-2005-4832 Oracle 9i/10g - ACTIVATE_SUBSCRIPTION SQL Injection
Oracle 9i/10g - ACTIVATE_SUBSCRIPTION SQL Injection
---
#!/usr/bin/perl
#
# Remote Oracle DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION exploit (9i/10g)
#
# Grant or revoke dba permission to unprivileged user
#
# Tested on "Oracle Database 10g Enterprise Edition Release 10.1.0.3.0"
#
# REF: http://www.securityfocus.com/archive/1/396133
#
# AUTHOR: Andrea "bunker" Purificato
# http://rawlab.mindcreations.com
#
# DATE: Copyright 2007 - Fri Feb 23 12:44:18 CET 2007
#
# Oracle InstantClient (basic + sdk) required for DBD::Oracle
#
#
# bunker@fin:~$ perl dbms_cdc_subscribe.pl -h localhost -s test -u bunker -p **** -r
# [-] Wait...
# [-] Revoking DBA from BUNKER...
# DBD::Oracle::db do failed: ORA-01031: insufficient privileges (DBD ERROR: OCIStmtExecute) [for Statement "REVOKE DBA FROM BUNKER"] at
No writeups or analysis indexed.
http://aluigi.altervista.org/adv/cellfucktor-adv.txthttp://osvdb.org/40503http://secunia.com/advisories/26765http://securityreason.com/securityalert/3130http://www.securityfocus.com/bid/25625http://www.vupen.com/english/advisories/2007/3109https://exchange.xforce.ibmcloud.com/vulnerabilities/36506http://aluigi.altervista.org/adv/cellfucktor-adv.txthttp://osvdb.org/40503http://secunia.com/advisories/26765http://securityreason.com/securityalert/3130http://www.securityfocus.com/bid/25625http://www.vupen.com/english/advisories/2007/3109https://exchange.xforce.ibmcloud.com/vulnerabilities/36506
2007-09-12
Published