CVE-2006-7141
Oracle 9i/10g - 'utl_file' FileSystem Access
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utl_file functions such as (1) utl_file.put_line and (2) utl_file.get_line, a related issue to CVE-2005-0701. NOTE: this issue is disputed by third parties who state that this is due to an insecure configuration instead of an inherent vulnerability
** IMPUGNADO ** Vulnerabilidad de escalado de ruta en el Servidor de Base de Datos Oracle, cuando el utl_file_dir está establecido a un valor comodín o existen privilegios de "CREATE ANY DIRECTORY to PUBLIC", permite a usuarios remotos autenticados leer y modificar ficheros de su elección pasando rutas completas de ficheros a la función utl_file como la (1) utl_file.put_line y(2) utl_file.get_line, vulnerabilidad relacionada con la CVE-2005-0701. NOTA: esta vulnerabilidad está impugnada por terceras partes que determinan que esto se debe a una configuración insegura en vez de ser propiamente una vulnerabilidad.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-12-19 First Exploit
- 2007-03-07 CVE Reserved
- 2007-03-07 CVE Published
- 2024-01-09 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/archive/1/454862/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/454964/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/455047/100/0/threaded | Mailing List |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/2959 | 2006-12-19 | |
| http://www.0xdeadbeef.info/exploits/raptor_orafile.sql | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Database Server Search vendor "Oracle" for product "Database Server" | * | - |
Affected
| ||||||