The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

computer vulnerability CVE-2009-0972 CVE-2009-0973 CVE-2009-0975

Oracle Database: several vulnerabilities of April 2009

Synthesis of the vulnerability

Several vulnerabilities are corrected by the CPU of April 2009.
Vulnerable software: Oracle DB, Oracle Net Services, SQL*Net.
Severity of this announce: 2/4.
Consequences of an intrusion: user access/rights, data reading, data creation/edition, denial of service on service.
Attacker's origin: user account.
Number of vulnerabilities in this bulletin: 16.
Creation date: 15/04/2009.
Revision date: 21/04/2009.
Références of this computer vulnerability: CERTA-2009-AVI-154, CPUapr2009, CVE-2009-0972, CVE-2009-0973, CVE-2009-0975, CVE-2009-0976, CVE-2009-0977, CVE-2009-0978, CVE-2009-0979, CVE-2009-0980, CVE-2009-0981, CVE-2009-0984, CVE-2009-0985, CVE-2009-0986, CVE-2009-0988, CVE-2009-0991, CVE-2009-0992, CVE-2009-0997, VIGILANCE-VUL-8635.

Description of the vulnerability

The CPU (Critical Patch Update) of April 2009 corrects several vulnerabilities of Oracle Database. Oracle's announce contains a detailed table, summarized below.

An attacker can generate a buffer overflow by using a long "plan" name in ALTER SYSTEM SET RESOURCE_MANAGER_PLAN or in SYS.DBMS_RESOURCE_MANAGER.SWITCH_PLAN (Resource Manager). [severity:2/4; CVE-2009-0979]

An attacker can obtain or alter information or create a denial of service via a vulnerability of Core RDBMS. [severity:2/4; CVE-2009-0985]

An attacker can obtain or alter information or create a denial of service via a vulnerability of Workspace Manager. [severity:2/4; CERTA-2009-AVI-154, CVE-2009-0972]

An attacker can inject SQL in the GRANT_TYPE_ACCESS procedure of the DBMS_AQADM_SYS package of Advanced Queuing. [severity:2/4; CVE-2009-0977]

An attacker can inject SQL in the DEQ_EXEJOB procedure of the DBMS_AQIN package of Advanced Queuing. [severity:2/4; CVE-2009-0992]

An attacker can obtain or alter information via a vulnerability of Database Vault. [severity:2/4; CVE-2009-0984]

An attacker can alter information or create a denial of service via a vulnerability of SQLX Functions. [severity:2/4; CVE-2009-0980]

An attacker can obtain or alter information via a vulnerability of Workspace Manager. [severity:2/4; CVE-2009-0975]

An attacker can obtain or alter information via a vulnerability of Workspace Manager. [severity:2/4; CVE-2009-0976]

An attacker can obtain or alter information via a SQL injection in LT.ROLLBACKWORKSPACE of Workspace Manager. [severity:2/4; CVE-2009-0978]

An attacker can obtain or alter information or create a denial of service via a vulnerability of Workspace Manager. [severity:2/4; CVE-2009-0986]

An attacker can create a denial of service via a vulnerability of Cluster Ready Services. [severity:2/4; CVE-2009-0973]

An attacker can create a denial of service via a vulnerability of Listener. [severity:2/4; CVE-2009-0991]

An attacker can obtain APEX password hashes. [severity:2/4; CVE-2009-0981]

An attacker can obtain or alter information via a vulnerability of Database Vault. [severity:2/4; CVE-2009-0997]

An attacker can obtain or alter information via a vulnerability of Password Policy. [severity:2/4; CVE-2009-0988]
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides computer vulnerability announces. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The technology watch team tracks security threats targeting the computer system. Each administrator can customize the list of products for which he wants to receive vulnerability alerts.