Signature Detail
Short Name |
DB:ORACLE:DBMS:EXPORT-EXTN2 |
|---|---|
Severity |
High |
Recommended |
No |
Category |
DB |
Keywords |
Oracle 10g DBMS_EXPORT_EXTENSION Privilege Escalation 2 |
Release Date |
2016/02/11 |
Update Number |
2644 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vsrx-12.1+ |
DB: Oracle 10g DBMS_EXPORT_EXTENSION Privilege Escalation 2
This signature detects attempts to exploit a known flaw in Oracle. Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via the GET_DOMAIN_INDEX_METADATA function in the DBMS_EXPORT_EXTENSION package. This can result in privilege escalation.
Extended Description
Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB06 in Export; (2) DB08, (3) DB09, (4) DB10, (5) DB11, (6) DB12, (7) DB13, (8) DB14, and (9) DBC01 for OCI; (10) DB16 for Query Rewrite/Summary Mgmt; (11) DB17, (12) DB18, (13) DB19, (14) DBC02, (15) DBC03, and (16) DBC04 for RPC; and (17) DB20 for Semantic Analysis. NOTE: as of 20060719, Oracle has not disputed third party claims that DB06 is related to "SQL injection" using DBMS_EXPORT_EXTENSION with a modified ODCIIndexGetMetadata routine and a call to GET_DOMAIN_INDEX_METADATA, in which case DB06 might be CVE-2006-2081.
Affected Products
- oracle database_server 10.1.0.5
- oracle database_server 10.2.0.2
- oracle database_server 8.1.7.4
- oracle database_server 9.2.0.7
References
- BugTraq: 17699
- CVE: CVE-2006-3702
- CVE: CVE-2006-2081