Related information Oracle multiple security vulnerabilities Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others ACROS Security: HTML Injection in Oracle WebLogic Server Console (ASPR #2009-10-30-1) [DSECRG-09-010] Oracle 10g CTXSYS.DRVXTABC - plsql injection US-CERT Technical Cyber Security Alert TA09-294A -- Oracle Updates for Multiple Vulnerabilities From:Dennis Yurichev <dennis_(at)_conus.info> Date:30.10.2009Subject:CVE-2009-1979 (Oracle RDBMS)-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi. This vulnerability was ranked 10.0 (for Windows) in CPUoct2009 and related to improper AUTH_SESSKEY parameter length validation. http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct200 9.html Executable + source code attached. Source code attached. - -- http://blogs.conus.info -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkrq+Q8ACgkQ1YPmFmJG++PsqACfX4vbv3qcKRUxQDbC2f9F99Qj rBgAoI0Xc4vzfFe83dKSzIn42E+fDHPC =Vdv0 -----END PGP SIGNATURE-----
Oracle multiple security vulnerabilities
Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others
ACROS Security: HTML Injection in Oracle WebLogic Server Console (ASPR #2009-10-30-1)
[DSECRG-09-010] Oracle 10g CTXSYS.DRVXTABC - plsql injection
US-CERT Technical Cyber Security Alert TA09-294A -- Oracle Updates for Multiple Vulnerabilities
