PT-2010-2593 · Oracle · Oracle Database

Published

2010-04-13

Updated

2012-10-23

CVE-2010-0870

CVSS v2.0

3.6

Low

Vector

AV:N/AC:H/Au:S/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle Database version 9.2.0.8 Oracle Database version 9.2.0.8DV

Description The issue affects the confidentiality and integrity of the system, related to the SYS.DBMS CDC PUBLISH function in the Change Data Capture component. It can be exploited by remote authenticated users.

Recommendations For Oracle Database version 9.2.0.8, consider restricting access to the Change Data Capture component until a fix is available. For Oracle Database version 9.2.0.8DV, consider restricting access to the Change Data Capture component until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2010-0870

Affected Products

Oracle Database

PT-2010-2593 · Oracle · Oracle Database

CVE-2010-0870

Related Identifiers

Affected Products

References · 6