Intrusion Prevention

Oracle.Secure.Backup.NDMP.DoS

Description

This indicates an attack attempt against a denial-of-service vulnerability in Oracle Secure Backup.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted NDMP request. Attackers may exploit this to cause a denial-of-service condition.

Affected Products

Oracle Secure Backup version 10.2.0.2
Oracle Secure Backup version 10.2.0.3
Oracle Secure Backup version 10.1.0.1
Oracle Secure Backup version 10.1.0.2
Oracle Secure Backup version 10.1.0.3

Impact

Denial of service

Recommended Actions

Apply the patch available at the following web site:
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html

CVE References

CVE-2008-5442 CVE-2008-5441