CVE-2007-5508

Multiple SQL injection vulnerabilities in the CTXSYS Intermedia application for the Oracle Text component (CTX_DOC) in Oracle Database 10.1.0.5 and 10.2.0.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) THEMES, (2) GIST, (3) TOKENS, (4) FILTER, (5) HIGHLIGHT, and (6) MARKUP procedures, aka DB03. NOTE: remote unauthenticated attack vectors exist when CTXSYS is used with oracle Application Server.

CVSS v2.0 6.5 MEDIUM

6.5^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=119332677525918&w=2
http://secunia.com/advisories/27251	Vendor Advisory
http://secunia.com/advisories/27409
http://securityreason.com/securityalert/3242
http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-oracle-ctx-doc/
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
http://www.securityfocus.com/archive/1/482425/100/0/threaded
http://www.securityfocus.com/bid/26101
http://www.securitytracker.com/id?1018823
http://www.us-cert.gov/cas/techalerts/TA07-290A.html	US Government Resource
http://www.vupen.com/english/advisories/2007/3524
http://www.vupen.com/english/advisories/2007/3626

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:database_server:10.1.0.5:::::::*
	cpe:2.3:a:oracle:database_server:10.2.0.3:::::::*

History

No history.

Information

Published : 2007-10-17 23:17

Updated : 2023-12-10 10:40

NVD link : CVE-2007-5508

Mitre link : CVE-2007-5508

CVE.ORG link : CVE-2007-5508

JSON object : View

Products Affected

oracle

database_server

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2007-5508", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-10-17T23:17:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=119332677525918&w=2", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27251", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27409", "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/3242", "source": "cve@mitre.org"}, {"url": "http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-oracle-ctx-doc/", "source": "cve@mitre.org"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/482425/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26101", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1018823", "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA07-290A.html", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/3524", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/3626", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in the CTXSYS Intermedia application for the Oracle Text component (CTX_DOC) in Oracle Database 10.1.0.5 and 10.2.0.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) THEMES, (2) GIST, (3) TOKENS, (4) FILTER, (5) HIGHLIGHT, and (6) MARKUP procedures, aka DB03. NOTE: remote unauthenticated attack vectors exist when CTXSYS is used with oracle Application Server."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en la aplicaci\u00f3n CTXSYS Intermedia para el componente Oracle Text (CTX_DOC) en Oracle Database 10.1.0.5 y 10.2.0.3 permiten a usuarios remotos autenticados ejecutar comandos SQL de su elecci\u00f3n mediante los procedimientos (1) THEMES, (2) GIST, (3) TOKENS, (4) FILTER, (5) HIGHLIGHT, and (6) MARKUP, tambi\u00e9n conocido como DB03."}], "lastModified": "2018-10-15T21:45:31.643", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03A522A3-07D7-481F-A538-EA3D13256F63"}, {"criteria": "cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED41086B-840A-4B39-B249-461A4B00B57B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}