Network Security Consulting Advisories Article
http://www.securityfocus.com/bid/53097
Security Info | Bugtraq ID: | 53097 | | Class: | Unknown | | CVE: | CVE-2012-0552
| | Remote: | Yes | | Local: | No | | Published: | Apr 18 2012 12:00AM | | Updated: | Apr 18 2012 12:00AM | | Credit: | Oracle | | Vulnerable: | Oracle Oracle11g Standard Edition 11.2.0.3
Oracle Oracle11g Standard Edition 11.2.0.2.0
Oracle Oracle11g Standard Edition 11.1.0.7 R1
Oracle Oracle11g Enterprise Edition 11.2.0.3
Oracle Oracle11g Enterprise Edition 11.2.0.2.0
Oracle Oracle11g Enterprise Edition 11.1.0.7 R1
Oracle Oracle10g Standard Edition 10.2 .5
Oracle Oracle10g Standard Edition 10.2 .3 R2
Oracle Oracle10g Standard Edition 10.2.0.4 R2
Oracle Oracle10g Personal Edition 10.2 .5
Oracle Oracle10g Personal Edition 10.2 .3 R2
Oracle Oracle10g Personal Edition 10.2.0.4 R2
Oracle Oracle10g Enterprise Edition 10.2 .5
Oracle Oracle10g Enterprise Edition 10.2 .3 R2
Oracle Oracle10g Enterprise Edition 10.2.0.4 R2
| | | | Not Vulnerable: | | Security DiscussionOracle Database Server is prone to a remote vulnerability in Oracle Spatial.
The vulnerability can be exploited over the 'Oracle NET' protocol. For an exploit to succeed, the attacker must have 'Create session, create index, alter index, create table' privileges.
This vulnerability affects the following supported versions:
10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, 11.2.0.3Proof of Concept and Security ExploitsCurrently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com. Security Solution(s)Solution:
Vendor updates are available. Please contact the vendor for more information.
Security References(s) References:
|
|
 |
|
|
|
