CVE-2007-5504
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and 10.1.0.5 unknown impact and remote attack vectors, related to (1) Import (DB01) and (2) Advanced Queuing (DB25). NOTE: as of 20071108, Oracle has not disputed reliable researcher claims that DB25 is for a buffer overflow in the DBLINK_INFO procedure in the DBMS_AQADM_SYS package.
MĂșltiples vulnerabilidades no especificadas en Oracle Database versiones 9.0.1.5+ y 10.1.0.5, un impacto desconocido y vectores de ataque remotos, relacionados con (1) Import (DB01) y (2) Advanced Queuing (DB25). NOTA: a partir del 20071108, Oracle no ha cuestionado las afirmaciones de investigadores confiables de que DB25 es para un desbordamiento del bĂșfer en el procedimiento DBLINK_INFO en el paquete DBMS_AQADM_SYS.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-10-17 CVE Reserved
- 2007-10-17 CVE Published
- 2024-08-07 CVE Updated
- 2024-09-27 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://www.appsecinc.com/resources/alerts/oracle/2007-08.shtml | X_refsource_misc | |
| http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html | X_refsource_confirm |
|
| http://www.securityfocus.com/archive/1/482923/100/100/threaded | Mailing List | |
| http://www.securityfocus.com/bid/26235 | Vdb Entry | |
| http://www.securitytracker.com/id?1018823 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA07-290A.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://marc.info/?l=bugtraq&m=119332677525918&w=2 | 2018-10-15 | |
| http://secunia.com/advisories/27251 | 2018-10-15 | |
| http://secunia.com/advisories/27409 | 2018-10-15 | |
| http://www.vupen.com/english/advisories/2007/3524 | 2018-10-15 | |
| http://www.vupen.com/english/advisories/2007/3626 | 2018-10-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Database Server Search vendor "Oracle" for product "Database Server" | 9.0.1.5 Search vendor "Oracle" for product "Database Server" and version "9.0.1.5" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Database Server Search vendor "Oracle" for product "Database Server" | 10.1.0.5 Search vendor "Oracle" for product "Database Server" and version "10.1.0.5" | - |
Affected
| ||||||