This application requires Javascript for optimal performance.

Oracle.Database.JAVA.Packages.Command.Execution

Release Date

Feb 10, 2010

Severity

critical

Impact

Privilege Escalation

Description

This indicates an attack attempt to exploit a privilege-escalation vulnerability in Oracle Database.

This vulnerability allows attackers to gain complete control of the database.

Affected Products

Oracle Database 11g version 11.1.0.7 and earlier versions

Recommended Actions

Currently we are not aware of any officially supplied patch for this issue.

Coverage

IPS
VCM

Reference/s

http://secunia.com/advisories/38353/
http://www.securityfocus.com/bid/38115 (BugTraq)
http://blog.red-database-security.com/2010/02/04/oracle-11g-0day-exploit-published/
http://www.databasesecurity.com/HackingAurora.pdf

Reference: VID-18184