CVE-2007-5505 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Oracle Database Server

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents3 sources
Severity
8.5HIGHNVD
NVD7.5CNA7.5
EPSS
0.9%
top 24.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedOct 17
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 have unknown impact and remote attack vectors, related to (1) the Export component (DB02), (2) Oracle Text (DB04), (3) Oracle Text (DB05), (4) Spatial component (DB07), and (5) Advanced Security Option (DB19).

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

â–¶NVDoracle/database_server14 versions+13

🔴Vulnerability Details

4
GHSA
GHSA-cf38-5cmw-7r2h: Buffer overflow in MDSYS↗2022-05-01
â–¶
GHSA
GHSA-g3vv-27vh-7g43: Multiple unspecified vulnerabilities in Oracle Database 9↗2022-05-01
â–¶
CVEList
CVE-2007-5897: Buffer overflow in MDSYS↗2007-11-08
â–¶
CVEList
CVE-2007-5505: Multiple unspecified vulnerabilities in Oracle Database 9↗2007-10-17
â–¶
CVE-2007-5505 — Oracle Database Server vulnerability | cvebase