CVE-2006-0549

Oracle Database Server - SQL Injection

Title source: rule

Description

SQL injection vulnerability in the SYS.DBMS_METADATA_UTIL package in Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: due to the lack of relevant details from the Oracle advisory, a separate CVE is being created since it cannot be conclusively proven that this issue has been addressed by Oracle. It is possible that this is the same issue as Oracle Vuln# DB05 from the January 2006 CPU, in which case this would be subsumed by CVE-2006-0260. However, there are some inconsistencies that make this unclear, and there is also a possibility that this is related to DB06, which is subsumed by CVE-2006-0259.

Exploits (2)

exploitdb WORKING POC VERIFIED

by bunker · perlremotemultiple

https://www.exploit-db.com/exploits/3377

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by bunker · perlremotemultiple

https://www.exploit-db.com/exploits/3363

View Code ZIP pw:eip

References (7)

[Vendor Advisory] http://www.red-database-security.com/advisory/oracle_sql_injection_dbms_metadata_util.html

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/629316

[Vendor Advisory] http://www.integrigy.com/info/IntegrigySecurityAnalysis-CPU0106.pdf

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/24321

[Vendor Advisory] http://www.red-database-security.com/advisory/oracle_cpu_jan_2006.html

[Third Party Advisory, US Government Resource] http://www.us-cert.gov/cas/techalerts/TA06-018A.html

[Vendor Advisory] http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html

Scores

EPSS 0.0113

EPSS Percentile 78.4%

Details

Status published

Products (1)

oracle/database_server 10.1.0.5 r1

Published Feb 04, 2006

Tracked Since Feb 18, 2026