CVE-2008-2600 — Oracle Database Server vulnerability

11 documents4 sources
Severity
6.5MEDIUMNVD
EPSS
0.9%
top 24.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Database ServerOracle Database
Timeline
PublishedJul 15
Latest updateMay 1

Description

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to MDSYS.SDO_TOPO_MAP.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

â–¶NVDoracle/database_server10.1.0.5, 10.2.0.3+1
â–¶NVDoracle/oracle_database11.1.0.6

🔴Vulnerability Details

2
GHSA
GHSA-jc47-p5v9-wxr7: Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10↗2022-05-01
â–¶
CVEList
CVE-2008-2600: Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10↗2008-07-15
â–¶

💥Exploits & PoCs

8
Exploit-DB
SasCam WebCam Server 2.6.5 - ActiveX Overwrite (SEH)↗2010-07-03
â–¶
Exploit-DB
VideoLAN VLC Media Player 0.9.4 - '.ty' Local Buffer Overflow (SEH)↗2008-10-23
â–¶
Exploit-DB
Microsoft Windows - InternalOpenColorProfile Heap Overflow (PoC) (MS08-046)↗2008-10-12
â–¶
Exploit-DB
Microsoft Windows - GDI (EMR_COLORMATCHTOTARGETW) (MS08-021)↗2008-10-02
â–¶
Exploit-DB
CitectSCADA ODBC Server - Remote Stack Buffer Overflow (Metasploit)↗2008-09-05
â–¶
CVE-2008-2600 — Oracle Database Server vulnerability | cvebase