CVE-2009-1979

Oracle Database <10.2.0.4 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16342

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Dennis Yurichev · c++remotewindows

https://www.exploit-db.com/exploits/9905

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by jduck · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/oracle/tns_auth_sesskey.rb

View Code ZIP pw:eip

References (8)

[Various Sources] http://blogs.conus.info/node/28

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA09-294A.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/507598/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/36747

[Third Party Advisory, VDB Entry] http://osvdb.org/59110

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1023057

[Third Party Advisory] http://secunia.com/advisories/37027

Scores

EPSS 0.8575

EPSS Percentile 99.4%

Details

Status published

Products (2)

oracle/database_server 10.1.0.5

oracle/database_server 10.2.0.4

Published Oct 22, 2009

Tracked Since Feb 18, 2026