Description
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB01.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by sh2kerr · remotemultiple
https://www.exploit-db.com/exploits/31010
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1019218
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/27229
Patch, US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-017A.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0150
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0180
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=120058413923005&w=2
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28556
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28518
Scores
EPSS
0.2719
EPSS Percentile
96.4%
Details
Status
published
Products (3)
oracle/database_server
9.2.0.8dv
oracle/database_server
10.1.0.5
oracle/database_server
10.2.0.3
Published
Jan 17, 2008
Tracked Since
Feb 18, 2026