Oracle.SYS.DBMS.CDC.PUBLISH.SQL.Injection
Description
This indicates an attack attempt against a vulnerability in the SYS.DBMS_CDC_PUBLISH package of Oracle Database.
This vulnerability allows remote authenticated users to inject malicious SQL commands.
Affected Products
Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6
Impact
Attackers with EXECUTE privilege on the package SYS.DBMS_CDC_PUBLISH can execute arbitrary SQL commands with SYS privileges.
Recommended Actions
Apply the Oracle Critical Patch Update - October 2008, available at:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |