Oracle interMedia Multiple SQL Injection Vulnerabilities

Oracle interMedia is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries.

Successful exploits may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

NOTE: These issues were previously documented in BID 26039 (Oracle October 2007 Critical Patch Update Multiple Vulnerabilities). The issue was given its own BID because further technical details are now available.


Privacy Statement
Copyright 2010, SecurityFocus