CVE-2009-1970

Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7 - Denial of Service in Listener Component

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1970. PoCs published by Dennis Yurichev.

AI-analyzed exploit summary The provided text describes a DoS vulnerability in Oracle Database's Listener component, exploitable via the Oracle Net protocol without authentication. It lists affected versions but does not include actual exploit code.

Description

Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-0991.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Dennis Yurichev · textdosmultiple

https://www.exploit-db.com/exploits/33083

View Code ZIP pw:eip

The provided text describes a DoS vulnerability in Oracle Database's Listener component, exploitable via the Oracle Net protocol without authentication. It lists affected versions but does not include actual exploit code.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Oracle Database (9i 9.2.0.8, 10g 10.1.0.5/10.2.0.4, 11g 11.1.0.7)

No auth needed

Prerequisites: Network access to the Oracle Listener

MITRE ATT&CK