TNS: Oracle Database InterMedia Denial of Service
This signature detects attempts to exploit a known vulnerability in the Oracle Database Server's InterMedia system. This issue is caused by insufficient sanitization of user-supplied data in SQL statements. An attacker with limited privileges can exploit this vulnerability to create a denial-of-service condition on a vulnerable Oracle Database Server.
Extended Description
There is a denial of service vulnerability in Oracle Database Server. This issue is a result of a failure in the application to properly sanitize user-supplied input. This issue affects the Intermedia component and requires SQL (Oracle Net) access. A successful attack can compromise the availability of a vulnerable server. Oracle has released a Critical Patch Update to address this issue. It should be noted that this issue was previously reported in BID 13139 (Oracle Multiple Vulnerabilities); it has been assigned its own BID.
Affected Products
Oracle oracle9i_standard_edition
Short Name
DB:ORACLE:TNS:INTERMEDIA-DOS
Severity
Major
Recommended
False
Recommended Action
None
Category
DB
Keywords
Database Denial InterMedia Oracle Service bid:13239 of
Release Date
03/13/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Occasionally
Vendors
Oracle