Oracle9i Database Server Multiple Unspecified SQL Related Issues

2004-02-18T04:19:14
ID OSVDB:19853
Type osvdb
Reporter David Litchfield(mnemonix@globalnet.co.uk)
Modified 2004-02-18T04:19:14

Description

Vulnerability Description

Oracled9i Database Server contains multiple vulnerabilities that could lead to SQL injection, buffer overflows, denial of service, trigger abuse, or character set conversion bugs. This could result in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability.

Short Description

Oracled9i Database Server contains multiple vulnerabilities that could lead to SQL injection, buffer overflows, denial of service, trigger abuse, or character set conversion bugs. This could result in a loss of integrity.

References:

Vendor Specific Advisory URL Other Advisory URL: http://www.ngssoftware.com/advisories/oracle-01.txt ISS X-Force ID: 15271 CVE-2004-2345 Bugtraq ID: 9705