Описание
Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for Oracle Database 9.2.0.6 and 10.1.0.4 has unknown impact and remote authenticated attack vectors, aka Vuln# DB01. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB01 is for PL/SQL injection in the ENABLE_HIERARCHY_INTERNAL procedure.
Ссылки
- Vendor Advisory
- US Government Resource
- Patch
- US Government Resource
- Vendor Advisory
- Vendor Advisory
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:oracle:database_server:9.2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03612
Низкий
9 Critical
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for Oracle Database 9.2.0.6 and 10.1.0.4 has unknown impact and remote authenticated attack vectors, aka Vuln# DB01. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB01 is for PL/SQL injection in the ENABLE_HIERARCHY_INTERNAL procedure.
EPSS
Процентиль: 87%
0.03612
Низкий
9 Critical
CVSS2
Дефекты
NVD-CWE-noinfo