Vulnerability Name:

CVE-2006-5344 (CCN-30112)

Assigned:2006-10-17
Published:2006-10-17
Updated:2018-10-17
Summary:Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 have unknown impact and remote authenticated attack vectors related to (1) mdsys.sdo_3gl, aka Vuln# DB20, and (2) mdsys.sdo_cs, aka DB21.
Note: as of 20061023, Oracle has not disputed reports from reliable third parties that DB20 is a buffer overflow in GEOM_OPERATION, and DB21 is related to a buffer overflow and SQL injection in TRANSFORM_LAYER.
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Authentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Athentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2006-5344

Source: CCN
Type: SA22396
Oracle Products Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
22396

Source: CCN
Type: SECTRACK ID: 1017077
Oracle Database and Other Products Have Multiple Unspecified Vulnerabilities With Unspecified Impact

Source: SECTRACK
Type: UNKNOWN
1017077

Source: CCN
Type: Database Security Web site
Analysis of the October 2006 Critical Patch Update for the Oracle RDBMS

Source: MISC
Type: UNKNOWN
http://www.databasesecurity.com/oracle/OracleOct2006-CPU-Analysis.pdf

Source: CCN
Type: Oracle Critical Patch Update - October 2006
Oracle Critical Patch Update Advisory - October 2006

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html

Source: CCN
Type: Red-Database-Security Web site
Details Oracle Critical Patch Update October 2006 - V1.02

Source: MISC
Type: UNKNOWN
http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html

Source: BUGTRAQ
Type: UNKNOWN
20061018 Analysis of the Oracle October 2006 Critical Patch Update

Source: HP
Type: UNKNOWN
HPSBMA02133

Source: BID
Type: Patch
20588

Source: CCN
Type: BID-20588
Oracle October 2006 Security Update Multiple Vulnerabilities

Source: CERT
Type: US Government Resource
TA06-291A

Source: VUPEN
Type: Vendor Advisory
ADV-2006-4065

Source: XF
Type: UNKNOWN
oracle-geom-operation-bo(30112)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:oracle:database_server:8.1.7.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.2.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:oracle:database_server:8.1.7.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.2.0.6:r2:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:10.1.0.4:r1:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.2.0.7:r2:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2006-5344 (CCN-30113)

    Assigned:2006-10-17
    Published:2006-10-17
    Updated:2006-10-17
    Summary:Oracle Database is vulnerable to a buffer overflow in the Oracle Spatial Component, caused by improper bounds checking of the TRANSFORM_LAYER procedure. A remote attacker with execute privileges on the MDSYS.SDO_CS package could exploit this vulnerability to execute arbitrary code on the system.
    CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): Low
    User Interaction (UI): Required
    Scope:Scope (S): Changed
    Impact Metrics:Confidentiality (C): High
    Integrity (I): High
    Availibility (A): High
    CVSS v2 Severity:9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
    6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Authentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
    6.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Athentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    Vulnerability Consequences:Gain Privileges
    References:Source: MITRE
    Type: CNA
    CVE-2006-5344

    Source: CCN
    Type: SA22396
    Oracle Products Multiple Vulnerabilities

    Source: CCN
    Type: SECTRACK ID: 1017077
    Oracle Database and Other Products Have Multiple Unspecified Vulnerabilities With Unspecified Impact

    Source: CCN
    Type: Database Security Web site
    Analysis of the October 2006 Critical Patch Update for the Oracle RDBMS

    Source: CCN
    Type: Oracle Critical Patch Update - October 2006
    Oracle Critical Patch Update Advisory - October 2006

    Source: CCN
    Type: Red-Database-Security Web site
    Details Oracle Critical Patch Update October 2006 - V1.02

    Source: CCN
    Type: BID-20588
    Oracle October 2006 Security Update Multiple Vulnerabilities

    Source: XF
    Type: UNKNOWN
    oracle-transform-layer-bo(30113)

    Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:oracle:database_server:8.1.7.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.2.0.6:r2:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:10.1.0.4:r1:*:*:*:*:*:*
  • OR cpe:/a:oracle:database_server:9.2.0.7:r2:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2006-5344 (CCN-30114)

    Assigned:2006-10-17
    Published:2006-10-17
    Updated:2018-10-17
    Summary:Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 have unknown impact and remote authenticated attack vectors related to (1) mdsys.sdo_3gl, aka Vuln# DB20, and (2) mdsys.sdo_cs, aka DB21.
    Note: as of 20061023, Oracle has not disputed reports from reliable third parties that DB20 is a buffer overflow in GEOM_OPERATION, and DB21 is related to a buffer overflow and SQL injection in TRANSFORM_LAYER.
    CVSS v3 Severity:5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): Low
    User Interaction (UI): Required
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): Low
    Integrity (I): Low
    Availibility (A): Low
    CVSS v2 Severity:9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
    7.9 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:H/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Authentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
    5.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:H/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Athentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    Vulnerability Type:CWE-noinfo
    Vulnerability Consequences:Informational
    References:Source: MITRE
    Type: CNA
    CVE-2006-5344

    Source: CCN
    Type: SA22396
    Oracle Products Multiple Vulnerabilities

    Source: CCN
    Type: SECTRACK ID: 1017077
    Oracle Database and Other Products Have Multiple Unspecified Vulnerabilities With Unspecified Impact

    Source: CCN
    Type: Database Security Web site
    Analysis of the October 2006 Critical Patch Update for the Oracle RDBMS

    Source: CCN
    Type: Oracle Critical Patch Update - October 2006
    Oracle Critical Patch Update Advisory - October 2006

    Source: CCN
    Type: Red-Database-Security Web site
    Details Oracle Critical Patch Update October 2006 - V1.02

    Source: CCN
    Type: BID-20588
    Oracle October 2006 Security Update Multiple Vulnerabilities

    Source: XF
    Type: UNKNOWN
    oracle-transform-layer-sql-injection(30114)

    BACK
    oracle database server 8.1.7.4
    oracle database server 9.0.1.5
    oracle database server 9.2.0.7
    oracle database server 10.1.0.4
    oracle database server 8.1.7.4
    oracle database server 9.2.0.6 r2
    oracle database server 10.1.0.4 r1
    oracle database server 9.2.0.7 r2
    oracle database server 8.1.7.4
    oracle database server 9.2.0.6 r2
    oracle database server 10.1.0.4 r1
    oracle database server 9.2.0.7 r2