• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Oracle January 2007 Security Update Multiple Vulnerabilities

References:

• Buffer Overflow in ONS Service (6914665) [OPMN01] (Red-Database-Security)
  
• Cross-Site-Scripting Vulnerability in Oracle XMLDB (DB06) (Red-Database-Security)
  
• Details Oracle Critical Patch Update January 2007 - V1.00 (Red-Database-Security)
  
• Oracle Critical Patch Update - January 2007 - E-Business Suite Impact (Integrigy)
  
• Oracle Critical Patch Update - January 2007 - E-Business Suite Tech Stack Matrix (Integrigy)
  
• Oracle Database Buffer overflow vulnerabilities in procedure DBMS_LOGMNR.ADD_LOG (Team SHATTER)
  
• Oracle Database Buffer overflow vulnerabilities in procedure DBMS_REPCAT_UNTRUST (Team SHATTER)
  
• Oracle Database Buffer overflow vulnerabilities in procedures of package DBMS_CA (Team SHATTER)
  
• Oracle Database Buffer overflow vulnerability in procedure DBMS_LOGREP_UTIL.GET_ (Team SHATTER)
  
• Oracle Homepage (Oracle)
  
• SQL Injection in package SYS.DBMS_AQ_INV (6980701) [DB01] (Red-Database-Security)
  
• US-CERT Technical Cyber Security Alert TA07-017A: Oracle Releases Patches for Mu (US-CERT)
  
• Vulnerability Note VU#221788 - Oracle SYS.DBMS_AQ package vulnerable to PL/SQL i (US-CERT)
  
• [ISecAuditors Security Advisories] Oracle Reports Web Cartridge (RWCGI60) vulner (ISecAuditors Security Advisories)
  
• 0day Oracle 10g exploit - dbms_aq.enqueue - become DBA (Andrea "bunker" Purificato)
  
• Oracle 10g R2 Enterprise Manager Directory Traversal ("NGS Software Insight Security Research" )
  
• Oracle Buffer Overflow in DBMS_DRS.GET_PROPERTY (45B7ECC8.7080705@appsecinc.com)
  
• Oracle Buffer Overflow in DBMS_LOGMNR.ADD_LOGFILE (Team SHATTER )
  
• Oracle Buffer Overflow in DBMS_LOGREP_UTIL.GET_OBJECT_NAME (Team SHATTER)
  
• Oracle Buffer Overflow in DBMS_REPCAT_UNTRUSTED.UNREGISTER_SNAPSHOT (Team SHATTER )
  
• Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL (Team SHATTER)
  
• Oracle Multiple Buffer Overflows and DoS attacks in public procedures of MDSYS.M (Team SHATTER)
  
• Re: Re: Oracle Buffer Overflows in DBMS_CAPTURE_ADM_INTERNAL (Team SHATTER)
  
• About the security content of Java Release 6 for Mac OS X 10.4 (Apple)
  
• Oracle Critical Patch Update - January 2007 (Oracle)
  
• RHSA-2008:0264-3 Moderate: Red Hat Network Satellite Server Solaris client secur (Red Hat)