Signature Detail

DB: Oracle Database SQL Compiler Access Control Security Bypass

This signature detects attempts to exploit a known security bypass vulnerability in the Oracle Database Server product. Specifically, it is due to improper enforcement of user permissions on data access to tables through certain types of views. A remote authenticated attacker can use this to perform UPDATE, DELETE and INSERT operations without having proper privileges. The data stored in the Oracle Database can be modified, deleted, and inserted by the attacker, thereby compromising the availability and integrity of data.

Extended Description

Oracle has released a Critical Patch Update advisory for July 2007 to address multiple vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected by these issues as well. The issues identified by the vendor affect all security properties of the Oracle products and present local and remote threats. Various levels of authorization are needed to leverage some of the issues, but other issues do not require any authorization. The most severe of the vulnerabilities could possibly expose affected computers to complete compromise.

Affected Products

• Hp oracle_for_openview 8.1.7
• Hp oracle_for_openview 9.1.01
• Hp oracle_for_openview 9.2
• Hp oracle_for_openview_for_linux_ltu
• Hp oracle_for_openview_for_linux_ltu_service_bureaus
• Oracle application_express 1.5
• Oracle application_express 2.0
• Oracle application_express 2.1
• Oracle application_express 2.2
• Oracle application_server_10g 9.0.4 .3
• Oracle collaboration_suite_release_1 10.1.2
• Oracle e-business_suite_11i 11.5.10
• Oracle e-business_suite_11i 11.5.10 CU2
• Oracle e-business_suite_11i 11.5.8
• Oracle e-business_suite_11i 11.5.9
• Oracle e-business_suite_12 12.0.0
• Oracle e-business_suite_12 12.0.1
• Oracle oracle10g_application_server 10.1.2 .0.1
• Oracle oracle10g_application_server 10.1.2 .0.2
• Oracle oracle10g_application_server 10.1.2 .1.0
• Oracle oracle10g_application_server 10.1.2 .2.0
• Oracle oracle10g_application_server 10.1.3 .0.0
• Oracle oracle10g_application_server 10.1.3 .1.0
• Oracle oracle10g_application_server 10.1.3 .2.0
• Oracle oracle10g_application_server 10.1.3 .3.0
• Oracle oracle10g_enterprise_edition 10.1.0 .5
• Oracle oracle10g_enterprise_edition 10.2.0 .2
• Oracle oracle10g_enterprise_edition 10.2.0 .3
• Oracle oracle10g_personal_edition 10.1.0.5
• Oracle oracle10g_personal_edition 10.2.0 .2
• Oracle oracle10g_personal_edition 10.2.0 .3
• Oracle oracle10g_standard_edition 10.1.0 .5
• Oracle oracle10g_standard_edition 10.2.0 .2
• Oracle oracle10g_standard_edition 10.2.0 .3
• Oracle oracle9i_application_server 1.0.2 .2
• Oracle oracle9i_enterprise_edition 9.0.1 .5 FIPS
• Oracle oracle9i_enterprise_edition 9.2.0.7.0
• Oracle oracle9i_enterprise_edition 9.2.0.8.0
• Oracle oracle9i_enterprise_edition 9.2.0 .8DV
• Oracle oracle9i_personal_edition 9.0.1 .5 FIPS
• Oracle oracle9i_personal_edition 9.2.0 .7
• Oracle oracle9i_personal_edition 9.2.0 .8
• Oracle oracle9i_personal_edition 9.2.0 .8DV
• Oracle oracle9i_standard_edition 9.0.1 .5 FIPS
• Oracle oracle9i_standard_edition 9.2.0 .7
• Oracle oracle9i_standard_edition 9.2.0.8
• Oracle oracle9i_standard_edition 9.2.0 .8DV
• Oracle peoplesoft_enterprise_customer_relationship_manage 8.9
• Oracle peoplesoft_enterprise_customer_relationship_manage 9.0
• Oracle peoplesoft_enterprise_human_capital_management 8.9
• Oracle peoplesoft_enterprise_human_capital_management 9.0
• Oracle peoplesoft_enterprise_peopletools 8.22
• Oracle peoplesoft_enterprise_peopletools 8.47
• Oracle peoplesoft_enterprise_peopletools 8.48
• Oracle peoplesoft_enterprise_peopletools 8.49
• Oracle secure_enterprise_search_10g_release_1 10.1.6
• Oracle secure_enterprise_search_10g_release_1 10.1.8

References

• BugTraq: 24887
• CVE: CVE-2007-3855