Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Oracle Database Create Database Link Lets Remote Authenticated Users Crash the Database
Categorie: Vulnerability
Posted: 2005-01-20 by ReCall
Views: 336
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A buffer overflow was reported in the Oracle Database in the Create Database link. A remote authenticated user can cause the database to crash.

Alexander Kornbrust from Red-Database-Security reported that a remote authenticated user with CONNECT privileges and the ability to create a private database link can send a specially crafted connect string to crash the target database server.

The vendor was notified on April 3, 2003.

The original advisory is available at:

http://www.red-database-security.com/content6.html

Impact: A remote authenticated user can cause the database to crash.

Solution: The vendor has issued a fix (Critical Patch Update - January 2005), described at:

http://www.oracle.com/technology/deploy/security/pdf/cpu-jan-2005_advisory.pdf
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=1308

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES