Oracle.DBMS.CDC.IPUBLISH.SQL.Injection
Description
This indicates an attack attempt against a vulnerability in the SYS.DBMS_CDC_IPUBLISH package of Oracle Database.
This vulnerability allows remote authenticated users to inject malicious SQL commands.
Affected Products
Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6
Impact
Attackers with EXECUTE privilege on the package SYS.DBMS_CDC_IPUBLISH can execute arbitrary SQL commands with SYS privileges.
Recommended Actions
Apply Oracle Critical Patch Update OCT 2008.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |