Oracle January 2007 Security Update Multiple Vulnerabilities
BID:22083
CVE-2006-4339 |Info
Oracle January 2007 Security Update Multiple Vulnerabilities
| Bugtraq ID: | 22083 |
| Class: | Unknown |
| CVE: |
CVE-2006-4343 CVE-2006-4339 CVE-2006-3738 CVE-2006-2940 CVE-2001-0729 CVE-2007-0268 CVE-2007-0280 CVE-2007-0282 CVE-2007-5561 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jan 16 2007 12:00AM |
| Updated: | May 20 2008 11:05PM |
| Credit: | Reported by the vendor. Some of the vulnerabilities were discovered by Esteban Martínez Fayó and Mark Litchfield. |
| Vulnerable: |
Red Hat Red Hat Network Satellite Server 5.0 Oracle PeopleSoft Enterprise PeopleTools 8.48 Oracle PeopleSoft Enterprise PeopleTools 8.47 Oracle PeopleSoft Enterprise PeopleTools 8.22 Oracle Oracle9i Standard Edition 9.2 .8 Oracle Oracle9i Standard Edition 9.2 .7 Oracle Oracle9i Standard Edition 9.2 .6 Oracle Oracle9i Standard Edition 9.2 .0.5 Oracle Oracle9i Standard Edition 9.0.1 .5 FIPS Oracle Oracle9i Standard Edition 9.0.1 .5 Oracle Oracle9i Standard Edition 9.0.1 .4 Oracle Oracle9i Personal Edition 9.2 .8 Oracle Oracle9i Personal Edition 9.2 .7 Oracle Oracle9i Personal Edition 9.2 .6 Oracle Oracle9i Personal Edition 9.2 .0.5 Oracle Oracle9i Personal Edition 9.0.1 .5 FIPS Oracle Oracle9i Personal Edition 9.0.1 .5 Oracle Oracle9i Personal Edition 9.0.1 .4 Oracle Oracle9i Enterprise Edition 9.2 .8.0 Oracle Oracle9i Enterprise Edition 9.2 .7.0 Oracle Oracle9i Enterprise Edition 9.2 .6.0 Oracle Oracle9i Enterprise Edition 9.2 .0.5 Oracle Oracle9i Enterprise Edition 9.0.1 .5 FIPS Oracle Oracle9i Enterprise Edition 9.0.1 .5 Oracle Oracle9i Enterprise Edition 9.0.1 .4 Oracle Oracle8i Standard Edition 8.1.7 .4 Oracle Oracle8i Enterprise Edition 8.1.7 .4.0 Oracle Oracle10g Standard Edition 10.2 .3 Oracle Oracle10g Standard Edition 10.2 .2 Oracle Oracle10g Standard Edition 10.2 .1 Oracle Oracle10g Standard Edition 10.1 .4.2 Oracle Oracle10g Standard Edition 10.1 .0.5 Oracle Oracle10g Standard Edition 10.1 .0.4 Oracle Oracle10g Standard Edition 10.1 .0.3.1 Oracle Oracle10g Standard Edition 10.1 .0.3 Oracle Oracle10g Standard Edition 10.1 .0.2 Oracle Oracle10g Personal Edition 10.2 .3 Oracle Oracle10g Personal Edition 10.2 .2 Oracle Oracle10g Personal Edition 10.2 .1 Oracle Oracle10g Personal Edition 10.1 .0.4 Oracle Oracle10g Personal Edition 10.1 .0.3.1 Oracle Oracle10g Personal Edition 10.1 .0.3 Oracle Oracle10g Personal Edition 10.1 .0.2 Oracle Oracle10g Enterprise Edition 10.2 .3 Oracle Oracle10g Enterprise Edition 10.2 .2 Oracle Oracle10g Enterprise Edition 10.2 .1 Oracle Oracle10g Enterprise Edition 10.1 .0.4 Oracle Oracle10g Enterprise Edition 10.1 .0.3.1 Oracle Oracle10g Enterprise Edition 10.1 .0.3 Oracle Oracle10g Enterprise Edition 10.1 .0.2 Oracle Oracle10g Application Server 10.1.3 .4.0 Oracle Oracle10g Application Server 10.1.3 .0.0 Oracle Oracle10g Application Server 10.1.2 .2.0 Oracle Oracle10g Application Server 10.1.2 .1.0 Oracle Oracle10g Application Server 10.1.2 .0.2 Oracle Oracle10g Application Server 10.1.2 .0.1 Oracle Oracle10g Application Server 10.1.2 Oracle Oracle10g Application Server 9.0.4 .2 Oracle Oracle10g Application Server 9.0.4 .1 Oracle Oracle Identity Management 10g 10.1.4 .0.1 Oracle Oracle 9i Application Server Release 1 1.0.2 .2 Oracle Enterprise Manager Grid Control 10g 10.2 .1 Oracle Enterprise Manager Grid Control 10g 10.1 .5 Oracle Enterprise Manager Grid Control 10g 10.1 .4 Oracle Enterprise Manager Grid Control 10g 10.1 .3 Oracle E-Business Suite 11i 11.5.10 CU2 Oracle E-Business Suite 11i 11.5.10 Oracle E-Business Suite 11i 11.5.9 Oracle E-Business Suite 11i 11.5.8 Oracle E-Business Suite 11i 11.5.7 Oracle E-Business Suite 11.0 Oracle Developer Suite 10.1.2 .0.2 Oracle Developer Suite 9.0.4 .3 Oracle Developer Suite 6i Oracle Application Server Release 2 10.1.2 .0.2 Oracle Application Server Release 2 10.1.2 .0.1 Oracle Application Server Release 2 10.1.2 .0.0 Oracle Application Server Release 2 9.0.2 .3 Oracle Application Server 10g 9.0.4 .3 Oracle Application Server 10g 9.0.4 .2 Oracle Application Server 10g 9.0.4 .1 Oracle Application Server 10g 9.0.4 HP Oracle for OpenView for Linux LTU 0 HP Oracle for OpenView 9.1.1 HP Oracle for OpenView 8.1.7 HP Oracle for OpenView 9.2 Apple Mac OS X Server 10.4.11 Apple Mac OS X Server 10.4.10 Apple Mac OS X 10.4.11 Apple Mac OS X 10.4.10 |
| Not Vulnerable: | |
Discussion
Oracle January 2007 Security Update Multiple Vulnerabilities
Oracle has released a Critical Patch Update advisory for January 2007 to address these vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected by these issues as well.
The issues identified by the vendor affect all security properties of the Oracle products and present local and remote threats. Various levels of authorization are needed to leverage some of the issues, but other issues do not require any authorization. The most severe of the vulnerabilities could possibly expose affected computers to complete compromise.
Oracle has released a Critical Patch Update advisory for January 2007 to address these vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected by these issues as well.
The issues identified by the vendor affect all security properties of the Oracle products and present local and remote threats. Various levels of authorization are needed to leverage some of the issues, but other issues do not require any authorization. The most severe of the vulnerabilities could possibly expose affected computers to complete compromise.
Exploit / POC
Oracle January 2007 Security Update Multiple Vulnerabilities
Some of these issues may not require an exploit.
The following example is available for EM06:
http://www.example.com:1158/em/dynamicImage/emSDK/chart/EmChartBean?beanId=\..\..\..\..\..\..\..\..\..\..\..\..\test.txt
Some of these issues may not require an exploit.
The following example is available for EM06:
http://www.example.com:1158/em/dynamicImage/emSDK/chart/EmChartBean?beanId=\..\..\..\..\..\..\..\..\..\..\..\..\test.txt
Solution / Fix
Oracle January 2007 Security Update Multiple Vulnerabilities
Solution:
Oracle has released a Critical Patch Update (January 2007) to address these issues. Please see the update for information on obtaining and applying appropriate patches.
Apple Mac OS X 10.4.10
Apple Mac OS X Server 10.4.10
Apple Mac OS X 10.4.11
Apple Mac OS X Server 10.4.11
Solution:
Oracle has released a Critical Patch Update (January 2007) to address these issues. Please see the update for information on obtaining and applying appropriate patches.
Apple Mac OS X 10.4.10
-
Apple Java for Mac OS X 10.4, Release 6
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16540&cat= 1&platform=osx&method=sa/JavaForMacOSX10.4Release6.dmg
Apple Mac OS X Server 10.4.10
-
Apple Java for Mac OS X 10.4, Release 6
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16540&cat= 1&platform=osx&method=sa/JavaForMacOSX10.4Release6.dmg
Apple Mac OS X 10.4.11
-
Apple Java for Mac OS X 10.4, Release 6
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16540&cat= 1&platform=osx&method=sa/JavaForMacOSX10.4Release6.dmg
Apple Mac OS X Server 10.4.11
-
Apple Java for Mac OS X 10.4, Release 6
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16540&cat= 1&platform=osx&method=sa/JavaForMacOSX10.4Release6.dmg
References
Oracle January 2007 Security Update Multiple Vulnerabilities
References:
References:
- Buffer Overflow in ONS Service (6914665) [OPMN01] (Red-Database-Security)
- Cross-Site-Scripting Vulnerability in Oracle XMLDB (DB06) (Red-Database-Security)
- Details Oracle Critical Patch Update January 2007 - V1.00 (Red-Database-Security)
- Oracle Critical Patch Update - January 2007 - E-Business Suite Impact (Integrigy)
- Oracle Critical Patch Update - January 2007 - E-Business Suite Tech Stack Matrix (Integrigy)
- Oracle Database Buffer overflow vulnerabilities in procedure DBMS_LOGMNR.ADD_LOG (Team SHATTER)
- Oracle Database Buffer overflow vulnerabilities in procedure DBMS_REPCAT_UNTRUST (Team SHATTER)
- Oracle Database Buffer overflow vulnerabilities in procedures of package DBMS_CA (Team SHATTER)
- Oracle Database Buffer overflow vulnerability in procedure DBMS_LOGREP_UTIL.GET_ (Team SHATTER)
- Oracle Homepage (Oracle)
- SQL Injection in package SYS.DBMS_AQ_INV (6980701) [DB01] (Red-Database-Security)
- US-CERT Technical Cyber Security Alert TA07-017A: Oracle Releases Patches for Mu (US-CERT)
- Vulnerability Note VU#221788 - Oracle SYS.DBMS_AQ package vulnerable to PL/SQL i (US-CERT)
- [ISecAuditors Security Advisories] Oracle Reports Web Cartridge (RWCGI60) vulner (ISecAuditors Security Advisories)
- 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA (Andrea "bunker" Purificato)
- Oracle 10g R2 Enterprise Manager Directory Traversal ("NGS Software Insight Security Research"
- Oracle Buffer Overflow in DBMS_DRS.GET_PROPERTY ([email protected])
- Oracle Buffer Overflow in DBMS_LOGMNR.ADD_LOGFILE (Team SHATTER
- Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME (Team SHATTER)
- Oracle Buffer Overflow in DBMS_REPCAT_UNTRUSTED.UNREGISTER_SNAPSHOT (Team SHATTER
- Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL (Team SHATTER)
- Oracle Multiple Buffer Overflows and DoS attacks in public procedures of MDSYS.M (Team SHATTER)
- Re: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL (Team SHATTER)
- About the security content of Java Release 6 for Mac OS X 10.4 (Apple)
- Oracle Critical Patch Update - January 2007 (Oracle)
- RHSA-2008:0264-3 Moderate: Red Hat Network Satellite Server Solaris client secur (Red Hat)