PRIOn knowledge basePRION:CVE-2008-1821

HistoryApr 16, 2008 - 10:05 a.m.

Buffer overflow

2008-04-1610:05:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.017 Low

EPSS

Percentile

87.8%

JSON

Unspecified vulnerability in the Advanced Queuing component in Oracle Database 9.0.1.5 FIPS+, and 10.1.0.5 has unknown impact and remote attack vectors related to SYS.DBMS_AQJMS_INTERNAL, aka DB15. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on reliable researcher claims that DB15 is for multiple buffer overflows in the (1) AQ$_REGISTER and (2) AQ$_UNREGISTER procedures.

CPENameOperatorVersion
database_servereq9.0.1.5 fips
database_servereq10.1.0.5

CPE	Name	Operator	Version
	database_server	eq	9.0.1.5 fips
	database_server	eq	10.1.0.5

References

secunia.com/advisories/29829

secunia.com/advisories/29874

www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html

www.securityfocus.com/archive/1/491024/100/0/threaded

www.securityfocus.com/archive/1/491521/30/390/threaded

www.securitytracker.com/id?1019855

www.vupen.com/english/advisories/2008/1233/references

www.vupen.com/english/advisories/2008/1267/references

exchange.xforce.ibmcloud.com/vulnerabilities/41858

exchange.xforce.ibmcloud.com/vulnerabilities/42037