Description

Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB22. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB22 is related to "length checking" in the RELATE function before MD2.RELATE is called.

Remediation

References

CVE-2006-5345

Related Vulnerabilities

IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-4699)

WordPress Plugin Redux Framework Multiple Cross-Site Scripting Vulnerabilities (3.6.0.2)

WordPress Plugin Portfolio-WordPress Portfolio Cross-Site Scripting (2.8.10)

MySQL CVE-2023-22092 Vulnerability (CVE-2023-22092)

MySQL CVE-2015-2643 Vulnerability (CVE-2015-2643)

Severity

Critical

Classification

CVE-2006-5345

Tags

Missing Update Known Vulnerabilities