128 matches found
CVE-2010-4420
CVE-2010-4420 affects Oracle Database with Database Vault (versions 10.2.0.3–10.2.0.5, 11.1.0.7, 11.2.0.1). The initial entry describes an unspecified local vulnerability affecting confidentiality and integrity via unknown vectors in the Database Vault component. Connected sources confirm the vul...
CVE-2010-4420
Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows local users to affect confidentiality and integrity via unknown vectors...
Oracle Database Multiple Vulnerabilities (January 2011 CPU)
The remote Oracle database server is missing the January 2011 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Client System Analyzer - Cluster Verify Utility - Database Vault - Oracle Spatial - Scheduler Agent - UIX %NASLMINLEVEL...
CVE-2009-0984
Unspecified vulnerability in the Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMSSYSSQL...
Design/Logic Flaw
Unspecified vulnerability in the Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMSSYSSQL...
CVE-2009-0997
Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, related to DBMSSYSSQL...
Design/Logic Flaw
Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, related to DBMSSYSSQL...
CVE-2009-0984
The CVE concerns Oracle Database Database Vault (versions 9.2.0.8DV, 10.2.0.4, 11.1.0.6). The vulnerability is described as unspecified but affects confidentiality and integrity via DBMS_SYS_SQL when exploited by remote authenticated users. Connected documents confirm this CVE is included in the ...
CVE-2009-0997
Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, related to DBMSSYSSQL...
CVE-2009-0997
CVE-2009-0997 affects Oracle Database 11.1.0.6 (Database Vault) via an unspecified vulnerability related to DBMS_SYS_SQL that could allow remote authenticated users to affect confidentiality. The issue is addressed in Oracle’s April 2009 Critical Patch Update; apply CPU APR 2009 to mitigate.
CVE-2009-0984
Unspecified vulnerability in the Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMSSYSSQL...
Oracle Database Vault ptrace(2) Privilege Escalation Exploit-vulnerability warning-the black bar safety net
/ original release: http://vnull.pcnet.com.pl/blog/?p=92 oradvmemoff. c version 0x1 ORACLE Database Vault runtime disabler x8632 Linux only AKA givebackthefreedom by Jakub 'vnull' Wartak 26.02.2008 0-day PRIVATE! D0 N0T DI$TRIBUT3! Tested on 10.2.0.3, CentOS 5. For other architectures/OS combos...
Oracle Database Vault ptrace(2) Privilege Escalation Exploit
No description provided by source. / original release: http://vnull.pcnet.com.pl/blog/?p=92 oradvmemoff.c version 0x1 ORACLE Database Vault runtime disabler x8632 Linux only AKA givebackthefreedom by Jakub 'vnull' Wartak [email protected] 26.02.2008 0-day PRIVATE! D0 N0T DI$TRIBUT3! Tested o...
Oracle Database Vault权限提升漏洞
BUGTRAQ ID: 32393 Oracle Database Vault是业界最先进的数据库安全产品,可保护和限制对敏感数据及应用的访问。 Database Vault没有正确地限制从操作系统端对数据库的访问,任何以SYSDBA权限登录的UNIX帐号都可以使用ptrace2绕过预期的安全限制,非授权访问敏感数据。 Oracle Database Vault 10.2.0.3 临时解决方法: 如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁: 创建的DBA的UNIX帐号为OSDBA组成员,oracle SUID二进制程序和共享内存对OSDBA组仅有读权限。...
Oracle Database Vault - ptrace(2) Local Privilege Escalation
Oracle Database Vault - ptrace2 Local Privilege Escalation / original release: http://vnull.pcnet.com.pl/blog/?p=92 oradvmemoff.c version 0x1 ORACLE Database Vault runtime disabler x8632 Linux only AKA givebackthefreedom by Jakub 'vnull' Wartak 26.02.2008 0-day PRIVATE! D0 N0T DI$TRIBUT3! Tested ...
Oracle Database Vault ptrace(2) Privilege Escalation Exploit
No description provided by source. / original release: http://vnull.pcnet.com.pl/blog/?p=92 oradvmemoff.c version 0x1 ORACLE Database Vault runtime disabler x8632 Linux only AKA givebackthefreedom by Jakub 'vnull' Wartak [email protected] 26.02.2008 0-day PRIVATE! D0 N0T DI$TRIBUT3! Tested o...
Oracle Database Vault - 'ptrace(2)' Local Privilege Escalation
/ original release: http://vnull.pcnet.com.pl/blog/?p=92 oradvmemoff.c version 0x1 ORACLE Database Vault runtime disabler x8632 Linux only AKA givebackthefreedom by Jakub 'vnull' Wartak 26.02.2008 0-day PRIVATE! D0 N0T DI$TRIBUT3! Tested on 10.2.0.3, CentOS 5. For other architectures/OS combos...
Oracle Database Vault ptrace(2) Privilege Escalation Exploit
Exploit for linux platform in category local exploits ============================================================ Oracle Database Vault ptrace2 Privilege Escalation Exploit ============================================================ / original release: http://vnull.pcnet.com.pl/blog/?p=92...
CVE-2008-2591
Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors...
Buffer overflow
Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors...