ID de Prueba:	1.3.6.1.4.1.25623.1.0.802519
Categoría:	Databases
Título:	Oracle Database Server Upgrade and Downgrade Component Multiple Vulnerabilities
Resumen:	Oracle Database Server is prone to multiple vulnerabilities.
Descripción:	Summary: Oracle Database Server is prone to multiple vulnerabilities. Vulnerability Insight: The flaw is due to an error in the Upgrade/Downgrade component. Vulnerability Impact: Successful exploitation allows remote authenticated users to execute arbitrary SQL commands via unknown vectors. Affected Software/OS: Oracle Database Server versions 9.0.1.5, 9.2.0.7 and 10.1.0.5. Solution: Apply the patch from the referenced advisory. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-2113 BugTraq ID: 23532 http://www.securityfocus.com/bid/23532 Bugtraq: 20070418 Advisory: SQL Injection in package SYS.DBMS_UPGRADE_INTERNAL (Google Search) http://www.securityfocus.com/archive/1/466153/100/0/threaded Cert/CC Advisory: TA07-108A http://www.us-cert.gov/cas/techalerts/TA07-108A.html HPdes Security Advisory: HPSBMA02133 http://www.securityfocus.com/archive/1/466329/100/200/threaded HPdes Security Advisory: SSRT061201 http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_April_2007_Analysis.pdf http://www.ngssoftware.com/research/papers/NGSSoftware-OracleCPUAPR2007.pdf http://www.red-database-security.com/advisory/oracle_cpu_apr_2007.html http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_upgrade_internal.html http://www.securitytracker.com/id?1017927 http://www.vupen.com/english/advisories/2007/1426 Common Vulnerability Exposure (CVE) ID: CVE-2007-2118
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.