Overview
The Oracle SYS.DBMS_AQ package is vulnerable to PL/SQL injection. This vulnerability may allow a remote, authenticated attacker to execute arbitrary PL/SQL commands on a vulnerable Oracle installation.
Description
The Oracle SYS.DBMS_AQ package fails to properly sanitize user input.This may allow a remote attacker to insert arbitrary PL/SQL commands that may be executed by the database. Note that an attacker must have execute privileges on SYS_DBMS_AQ package to exploit this vulnerability. Based on research into public information, we believe that this issue is Oracle Vuln# DB01 in the October 2007 January CPU. However, there is not sufficient information to authoritatively relate Oracle vulnerability information to information provided by other parties. |
Impact
A remote attacker may be able to execute PL/SQL queries on a server, possibly with elevated privileges. As a result, attackers may be able to view or modify the contents of an Oracle database. |
Solution
Apply patches from Oracle |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported in the Oracle Critical Patch Update for January 2007 and by Alexander Kornbrust of Red-Database-Security GmbH.
This document was written by Jeff Gennari based on information from Oracle and Alexander Kornbrust of Red-Database-Security GmbH.
Other Information
| CVE IDs: | None |
| Severity Metric: | 4.20 |
| Date Public: | 2007-01-17 |
| Date First Published: | 2007-01-17 |
| Date Last Updated: | 2007-01-17 19:24 UTC |
| Document Revision: | 9 |