CVE-2004-1339

2004-12-23T05:00:00
ID CVE-2004-1339
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:30:00

Description

SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.