NVD

Id
48302  
Name
CVE-2009-0992  
Description
Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_AQIN. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is SQL injection in the DEQ_EXEJOB procedure.  
Reject
 
CVSS Version
2  
CVSS Score
5.5  
Severity
Medium  
CVSS Base Score
5.5  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:N)  
Pub Date
2017-01-07  
Published
2009-04-15  
Modified Date
2012-10-22  
Seq
2009-0992  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
242892 48302 CVE-2009-0992 http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html  View
242893 48302 CVE-2009-0992 http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_aqin.html  View
242894 48302 CVE-2009-0992 20090416 SQL Injection in package DBMS_AQIN  View
242895 48302 CVE-2009-0992 34461  View
242896 48302 CVE-2009-0992 1022052  View
242897 48302 CVE-2009-0992 TA09-105A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40216 JVNDB-2009-001222 Oracle Database の Advanced Queuing コンポーネントにおける脆弱性 Oracle Database の Advanced Queuing コンポーネントには、機密性、完全性に影響のある脆弱性が存在します。 CVE-2009-0992 38423 CVE-2009-0992 48302 5.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001222.html 2009-04-15 2009-05-18 View