Gain a shell remotely : Oracle DBS_SCHEDULER vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.14641

Categoría: Gain a shell remotely

Título: Oracle DBS_SCHEDULER vulnerability

Resumen: NOSUMMARY

Descripción: Description:

The remote Oracle Database, according to its version number,
is vulnerable to a remote command execution vulnerability which may allow
an attacker who can execute SQL statements with certain privileges to
execute arbitrary commands on the remote host.

Solution : http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf
Risk Factor : High

Referencia Cruzada: BugTraq ID: 10871
BugTraq ID: 11091
BugTraq ID: 11100
BugTraq ID: 11099
BugTraq ID: 11120
Common Vulnerability Exposure (CVE) ID: CVE-2004-0637
http://www.securityfocus.com/bid/11099
CERT/CC vulnerability note: VU#316206
http://www.kb.cert.org/vuls/id/316206
http://www.idefense.com/application/poi/display?id=136&type=vulnerabilities&flashstatus=true
http://secunia.com/advisories/12409/
Common Vulnerability Exposure (CVE) ID: CVE-2004-0638
http://www.securityfocus.com/bid/11100
http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0178.html
http://www.idefense.com/application/poi/display?id=135&type=vulnerabilities&flashstatus=false
http://www.red-database-security.com/advisory/advisory_20040903_3.htm
XForce ISS Database: oracle-dbmssystem-bo(17254)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17254

Copyright This script is (C) 2004 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.14641
Categoría:	Gain a shell remotely
Título:	Oracle DBS_SCHEDULER vulnerability
Resumen:	NOSUMMARY
Descripción:	Description: The remote Oracle Database, according to its version number, is vulnerable to a remote command execution vulnerability which may allow an attacker who can execute SQL statements with certain privileges to execute arbitrary commands on the remote host. Solution : http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf Risk Factor : High
Referencia Cruzada:	BugTraq ID: 10871 BugTraq ID: 11091 BugTraq ID: 11100 BugTraq ID: 11099 BugTraq ID: 11120 Common Vulnerability Exposure (CVE) ID: CVE-2004-0637 http://www.securityfocus.com/bid/11099 CERT/CC vulnerability note: VU#316206 http://www.kb.cert.org/vuls/id/316206 http://www.idefense.com/application/poi/display?id=136&type=vulnerabilities&flashstatus=true http://secunia.com/advisories/12409/ Common Vulnerability Exposure (CVE) ID: CVE-2004-0638 http://www.securityfocus.com/bid/11100 http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0178.html http://www.idefense.com/application/poi/display?id=135&type=vulnerabilities&flashstatus=false http://www.red-database-security.com/advisory/advisory_20040903_3.htm XForce ISS Database: oracle-dbmssystem-bo(17254) https://exchange.xforce.ibmcloud.com/vulnerabilities/17254
Copyright	This script is (C) 2004 Tenable Network Security