Security Advisory

CVE-2006-5344

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-10-18 01:00:00

Last updated 2024-08-07 19:48:30

Assigner mitre

State PUBLISHED

Description

Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 have unknown impact and remote authenticated attack vectors related to (1) mdsys.sdo_3gl, aka Vuln# DB20, and (2) mdsys.sdo_cs, aka DB21. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB20 is a buffer overflow in GEOM_OPERATION, and DB21 is related to a buffer overflow and SQL injection in TRANSFORM_LAYER.

← Browse all CVEs View on cve.org ↗