Description
The GIOP service in TNS Listener in the Oracle Net Services component in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote attackers to cause a denial of service (crash) or read potentially sensitive memory via a connect GIOP packet with an invalid data size, which triggers a buffer over-read, aka DB22.
Remediation
References
Related Vulnerabilities
WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress SQL Injection (3.7.39)
MySQL CVE-2020-14591 Vulnerability (CVE-2020-14591)
WordPress 5.3.x Directory Traversal (5.3 - 5.3.17)
WordPress Plugin Social Like Box and Page by WpDevArt Unspecified Vulnerability (0.8.39)
WordPress Plugin Coming soon and Maintenance mode Cross-Site Scripting (3.5.2)