Summary
This host is running Oracle database and is prone to denial of service vulnerability
Impact
Successful exploitation allows an attacker to cause denial of service by sending packets of type 6 - Data packets.
Impact Level: Application
Solution
Apply patches from below link,
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
Insight
The flaw is due to error in 'RDBMS' component, which allows attackers to cause a denial of service (CPU consumption) via a crafted type 6 Data packet, aka DB20.
Affected
Oracle Database 9.0.1.5, 9.2.0.8, 9.2.0.8, 10.1.0.5 and 10.2.0.3
References
Severity
Classification
-
CVE CVE-2007-5506 -
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities
- IBM DB2 Administration Server (DAS) Buffer Overflow Vulnerability
- IBM DB2 UDB Multiple Unspecified Vulnerabilities (Linux)
- Oracle Database Server Multiple Unspecified Vulnerabilities
- Oracle MySQL Multiple Unspecified vulnerabilities-02 Oct14 (Windows)
- IBM DB2 Multiple Unspecified Vulnerabilities (Linux)