CVE-2008-5437

Name of the Vulnerable Software and Affected Versions Oracle Database versions 9.2.0.8 through 9.2.0.8DV Oracle Database versions 10.1.0.5 through 10.2.0.4 Oracle Database version 11.1.0.6

Description The issue affects the confidentiality and integrity of the system, allowing remote authenticated users to exploit it. It is related to the DBMS IJOB component in the Job Queue. Additionally, the current Oracle version has multiple issues that enable remote attackers to bypass security restrictions, execute arbitrary SQL commands, and access sensitive data.

Recommendations For Oracle Database versions 9.2.0.8 through 9.2.0.8DV, consider restricting access to the Job Queue component until a fix is available. For Oracle Database versions 10.1.0.5 through 10.2.0.4, restrict access to the DBMS IJOB component to minimize the risk of exploitation. For Oracle Database version 11.1.0.6, avoid using the Job Queue component until the issue is resolved. As a temporary workaround, consider disabling the DBMS IJOB component until a patch is available.