CVE-2009-0977

NONECVSS 0.0

0.0

Unspecified vulnerability in the Advanced Queuing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_AQIN. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is SQL injection in the GRANT_TYPE_ACCESS procedure in the DBMS_AQADM_SYS package.

🔗 References (14)

secalert_us@oraclehttp://secunia.com/advisories/34693
secalert_us@oraclehttp://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
secalert_us@oraclehttp://www.red-database-security.com/advisory/oracle_sql_injection_dbms_aqadm_sys.html
secalert_us@oraclehttp://www.securityfocus.com/archive/1/502727/100/0/threaded
secalert_us@oraclehttp://www.securityfocus.com/bid/34461
secalert_us@oraclehttp://www.securitytracker.com/id?1022052
secalert_us@oraclehttp://www.us-cert.gov/cas/techalerts/TA09-105A.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34693
af854a3a-2127-422b-91ae-364da2661108http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
af854a3a-2127-422b-91ae-364da2661108http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_aqadm_sys.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/502727/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34461
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1022052
af854a3a-2127-422b-91ae-364da2661108http://www.us-cert.gov/cas/techalerts/TA09-105A.html

Is Your Infrastructure Affected by CVE-2009-0977?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-0977

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-0977?