Technical Description

Multiple vulnerabilities have been identified in various Oracle products, which could be exploited by remote or local attackers to cause a denial of service, execute arbitrary commands, read and overwrite arbitrary data, disclose sensitive information, conduct SQL injection and cross site scripting attacks, or bypass security restrictions [...]

References

http://www.vupen.com/english/advisories/2007/1426
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2007.html
http://www.ngssoftware.com/research/papers/NGSSoftware-OracleCPUAPR2007.pdf
http://www.red-database-security.com/advisory/oracle_discoverer_servlet.html
http://www.red-database-security.com/advisory/oracle_css_ses.html
http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_aqadm_sys.html
http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_upgrade_internal.html
http://www.red-database-security.com/advisory/bypass_oracle_logon_trigger.html
http://www.appsecinc.com/resources/alerts/oracle/2007-07.shtml
http://www.zerodayinitiative.com/advisories/ZDI-07-016.html
http://www.zerodayinitiative.com/advisories/ZDI-07-017.html

Credits

Vulnerabilities reported by Vicente Aguilera Diaz (Internet Security Auditors), Gerhard Eschelbeck (Qualys), Esteban Martinez Fayo (Application Security), Joxean Koret, Alexander Kornbrust (Red Database Security), David Litchfield and Paul M. Wright (Next Generation Security Software), noderat ratty, and TippingPoint Zero Day Initiative.

ChangeLog

2007-04-17 : Initial release
2007-04-18 : Updated References

Vulnerability Management

Subscribe to VUPEN Security VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.