CVE

Id
16376  
CVE No.
CVE-2006-0272  
Status
Candidate  
Description
Unspecified vulnerability in the XML Database component of Oracle Database server 9.2.0.7 and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB29. NOTE: based on mutual credits by the relevant sources, it is highly likely that this issue is a buffer overflow in the (a) DBMS_XMLSCHEMA and (b) DBMS_XMLSCHEMA_INT packages, as exploitable via long arguments to (1) XDB.DBMS_XMLSCHEMA.GENERATESCHEMA or (2) XDB.DBMS_XMLSCHEMA.GENERATESCHEMAS.  
Phase
Assigned (20060118)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
130555 16376 CVE-2006-0272 FULLDISC:20060126 [Argeniss] Oracle Database Buffer overflows vulnerabilities in public procedures of XDB.DBMS_XMLSCHEMA{_INT}  View
130556 16376 CVE-2006-0272 URL:http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0893.html  View
130557 16376 CVE-2006-0272 MISC:http://www.argeniss.com/research/ARGENISS-ADV-010601.txt  View
130558 16376 CVE-2006-0272 MISC:http://www.integrigy.com/info/IntegrigySecurityAnalysis-CPU0106.pdf  View
130559 16376 CVE-2006-0272 CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2006-082403.html  View
130560 16376 CVE-2006-0272 MISC:http://www.red-database-security.com/advisory/oracle_cpu_jan_2006.html  View
130561 16376 CVE-2006-0272 CERT:TA06-018A  View
130562 16376 CVE-2006-0272 URL:http://www.us-cert.gov/cas/techalerts/TA06-018A.html  View
130563 16376 CVE-2006-0272 CERT-VN:VU#545804  View
130564 16376 CVE-2006-0272 URL:http://www.kb.cert.org/vuls/id/545804  View
130565 16376 CVE-2006-0272 CERT-VN:VU#891644  View
130566 16376 CVE-2006-0272 URL:http://www.kb.cert.org/vuls/id/891644  View
130567 16376 CVE-2006-0272 BID:16287  View
130568 16376 CVE-2006-0272 URL:http://www.securityfocus.com/bid/16287  View
130569 16376 CVE-2006-0272 VUPEN:ADV-2006-0243  View
130570 16376 CVE-2006-0272 URL:http://www.vupen.com/english/advisories/2006/0243  View
130571 16376 CVE-2006-0272 VUPEN:ADV-2006-0323  View
130572 16376 CVE-2006-0272 URL:http://www.vupen.com/english/advisories/2006/0323  View
130573 16376 CVE-2006-0272 SECTRACK:1015499  View
130574 16376 CVE-2006-0272 URL:http://securitytracker.com/id?1015499  View
130575 16376 CVE-2006-0272 SECUNIA:18493  View
130576 16376 CVE-2006-0272 URL:http://secunia.com/advisories/18493  View
130577 16376 CVE-2006-0272 SECUNIA:18608  View
130578 16376 CVE-2006-0272 URL:http://secunia.com/advisories/18608  View
130579 16376 CVE-2006-0272 XF:oracle-january2006-update(24321)  View
130580 16376 CVE-2006-0272 URL:http://xforce.iss.net/xforce/xfdb/24321  View
130581 16376 CVE-2006-0272 XF:oracle-xdbdbmx-xmlschema-bo(24376)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
57848 JVNDB-2006-000044 Oracle Application Server の Oracle Reports Developer コンポーネントにおける脆弱性 (REP03) ------------ CVE-2006-0274 16376 10 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000044.html  View