Back to search
CVE-2008-1820
Published: Apr 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in the Data Pump component in Oracle Database 9.2.0.8, 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote attack vectors related to KUPF$FILE_INT, aka DB11. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on reliable researcher claims that DB11 is for a buffer overflow in the SYS.KUPF$FILE_INT.GET_FULL_FILENAME procedure.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
oracle-cpu-april-2008(41858)
vdb-entry
x_refsource_XF
ADV-2008-1267
vdb-entry
x_refsource_VUPEN
ADV-2008-1233
vdb-entry
x_refsource_VUPEN
20080501 Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11)
mailing-list
x_refsource_BUGTRAQ
oracle-database-datapump-dos(42036)
vdb-entry
x_refsource_XF
1019855
vdb-entry
x_refsource_SECTRACK
29829
third-party-advisory
x_refsource_SECUNIA
HPSBMA02133
vendor-advisory
x_refsource_HP
http://www.oracle.com/technetwork/topics/security/cpuapr2008-082075.html
x_refsource_CONFIRM
29874
third-party-advisory
x_refsource_SECUNIA
SSRT061201
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now