CVE-2007-2110

{"id": "CVE-2007-2110", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.4, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2007-04-18T18:19:00.000", "references": [{"url": "http://www.freelists.org/archives/oracle-l/12-2006/msg00004.html", "source": "cve@mitre.org"}, {"url": "http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_April_2007_Analysis.pdf", "source": "cve@mitre.org"}, {"url": "http://www.ngssoftware.com/research/papers/NGSSoftware-OracleCPUAPR2007.pdf", "source": "cve@mitre.org"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2007-090632.html", "source": "cve@mitre.org"}, {"url": "http://www.red-database-security.com/advisory/oracle_cpu_apr_2007.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/466329/100/200/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/466329/100/200/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/23532", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1017927", "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA07-108A.html", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/1426", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.blackhat.com/presentations/bh-dc-07/Cerrudo/Presentation/bh-dc-07-Cerrudo-ppt.pdf", "source": "cve@mitre.org"}, {"url": "http://www.freelists.org/archives/oracle-l/12-2006/msg00004.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_April_2007_Analysis.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ngssoftware.com/research/papers/NGSSoftware-OracleCPUAPR2007.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2007-090632.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.red-database-security.com/advisory/oracle_cpu_apr_2007.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/466329/100/200/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/466329/100/200/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/23532", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1017927", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA07-108A.html", "tags": ["US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/1426", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.blackhat.com/presentations/bh-dc-07/Cerrudo/Presentation/bh-dc-07-Cerrudo-ppt.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Core RDBMS component for Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.4 on Windows systems has unknown impact and attack vectors, aka DB03. NOTE: as of 20070424, Oracle has not disputed reliable claims that DB03 occurs because RDBMS uses a NULL Discretionary Access Control List (DACL) for the Oracle process and certain shared memory sections, which allows local users to inject threads and execute arbitrary code via the OpenProcess, OpenThread, and SetThreadContext functions (DB03)."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Core RDBMS para Oracle Database 9.0.1.5+, 9.2.0.7 y 10.1.0.4 sobre sistemas Windows tiene impacto y vectores de ataque no especificados, tambi\u00e9n conocida como DB03. NOTA: a partir de 20070424, Oracle no ha disputado alegaciones confiables sobre que DB03 ocurre debido a que RDBMS utiliza una NULL Discretionary Access Control List (DACL) para el proceso Oracle y determinadas secciones de memoria compartida, lo que permite a usuarios locales inyectar hilos y ejecutar c\u00f3digo arbitrario a trav\u00e9s de las funciones OpenProcess, OpenThread y SetThreadContext (DB03)."}], "lastModified": "2024-11-21T00:29:56.370", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:database_server:9.0.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6C67572-800C-4214-AD12-E9017A9A5BAA"}, {"criteria": "cpe:2.3:a:oracle:database_server:9.2.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7847CEB-DD8D-45A0-B500-95D511110FB3"}, {"criteria": "cpe:2.3:a:oracle:database_server:10.1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F21B42DF-71DC-4FC4-8050-CFF7A3B641E5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}