Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Oracle Database Server CVE-2007-5504 Vulnerability (CVE-2007-5504)

Description

Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and 10.1.0.5 unknown impact and remote attack vectors, related to (1) Import (DB01) and (2) Advanced Queuing (DB25). NOTE: as of 20071108, Oracle has not disputed reliable researcher claims that DB25 is for a buffer overflow in the DBLINK_INFO procedure in the DBMS_AQADM_SYS package.

Remediation

References

Related Vulnerabilities

PHP Improper Input Validation Vulnerability (CVE-2007-3799)

WordPress Plugin WTI Like Post Cross-Site Scripting (1.4.4)

Drupal Core 8.x.x Information Disclosure (8.0.0 - 8.7.14)

IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-0219)

OpenSSL Observable Discrepancy Vulnerability (CVE-2003-0078)

Severity

Medium

Classification

CVE-2007-5504

Tags

Missing Update Known Vulnerabilities