[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL
From: shatter@xxxxxxxxxxxxx
Date: 29 Jan 2007 19:54:47 -0000

Correction to security advisories published by TeamSHATTER.

Unfortunatelly our advisories published last week had a few minor typos 
regarding the versions affected. Please find corrections to the following 
advisories:

- Oracle Database Buffer overflow vulnerabilities in procedure 
DBMS_LOGMNR.ADD_LOGFILE (CPU DB04)
Affected Versions: 9i
http://www.appsecinc.com/resources/alerts/oracle/2007-01.shtml

- Oracle Database Buffer overflow vulnerability in procedure 
DBMS_LOGREP_UTIL.GET_OBJECT_NAME (CPU DB08)
Affected Versions: 9iR2 and 10gR1
http://www.appsecinc.com/resources/alerts/oracle/2007-02.shtml

- Oracle Database Buffer overflow vulnerabilities in procedure 
DBMS_REPCAT_UNTRUSTED.UNREGISTER_SNAPSHOT (CPU DB07)
Affected Versions: 9i and 10gR1
http://www.appsecinc.com/resources/alerts/oracle/2007-03.shtml

- Oracle Database Buffer overflow vulnerabilities in procedures of package 
DBMS_CAPTURE_ADM_INTERNAL (CPU DB09)
Affected Versions: 9iR2 and 10gR1
http://www.appsecinc.com/resources/alerts/oracle/2007-06.shtml


The impact of all these vulnerabilities is as described in our advisories.

Our thanks to Steven Christey of Mitre for bringing this to our attention.


TeamSHATTER

Prev by Date: [ GLSA 200701-25 ] X.Org X server: Multiple vulnerabilities
Next by Date: Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
Previous by thread: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL
Next by thread: [USN-414-1] Squid vulnerabilities
Index(es):
- Date
- Thread