Description

Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB22. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB22 is related to "length checking" in the RELATE function before MD2.RELATE is called.

Remediation

References

CVE-2006-5345

Related Vulnerabilities

Microsoft SQL Server Other Vulnerability (CVE-2000-1085)

WordPress Plugin Master Slider-Responsive Touch Slider Cross-Site Scripting (2.7.1)

Contao Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19745)

Joomla CVE-2021-23128 Vulnerability (CVE-2021-23128)

Liferay DXP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-43747)

Severity

Critical

Classification

CVE-2006-5345

Tags

Missing Update Known Vulnerabilities