Description

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.3 allow remote authenticated users to have unknown impact via (1) DBMS_JAVA_TEST in the JavaVM component (DB01), (2) Oracle Text component (DB09), and (3) MDSYS.SDO_GEOR_INT in the Spatial component (DB15). NOTE: a reliable researcher claims that DB01 is SQL injection in DBMS_PRVTAQIS.

Remediation

References

CVE-2007-3853

Related Vulnerabilities

PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)

WordPress Plugin Responsive Poll Cross-Site Scripting (1.5.8)

phpMyAdmin Other Vulnerability (CVE-2004-1055)

WordPress Plugin Hide My WP Cross-Site Scripting (4.53)

WordPress Plugin Ultimate Membership Pro SQL Injection (3.3)

Severity

Medium

Classification

CVE-2007-3853

Tags

Missing Update Known Vulnerabilities