Description

Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB11. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB11 is related to "length checking" in the RELATE function before MD2.RELATE is called.

Remediation

References

CVE-2006-5339

Related Vulnerabilities

WordPress Plugin Booking Calendar-Appointment Booking-BookIt Security Bypass (2.3.7)

WordPress Plugin Simple 301 Redirects-Addon-Bulk Uploader Multiple Security Bypass Vulnerabilities (1.2.4)

Jboss EAP Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12617)

MongoDb Integer Overflow or Wraparound Vulnerability (CVE-2019-2392)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2018-8022)

Severity

Critical

Classification

CVE-2006-5339

Tags

Missing Update Known Vulnerabilities