Oracle.SYS.LT.ROLLBACKWORKSPACE.SQL.Injection
Description
This indicates an exploit attempt against the sql injection vulnerability in Oracle database system.
The vulnerability lies in the SYS.LT.ROLLBACKWORKSPACE procedure of Oracle database. A specially crafted parameters could allow attacker to execute SQL statements with SYS or WMSYS privileges.
Affected Products
Oracle 10g R1
Impact
Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems.
Recommended Actions
Apply the patch from vendor's website.
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2009.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |