Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2007-5511 - Vulnerability Database
Oracle Database Server

Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2007-5511

Medium
Reference: CVE-2007-5511
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-5511
Title: Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

SQL injection vulnerability in Workspace Manager for Oracle Database before OWM 10.2.0.4.1 OWM 10.1.0.8.0 and OWM 9.2.0.8.0 allows attackers to execute arbitrary SQL commands via the FINDRICSET procedure in the LT package. NOTE: this is probably covered by CVE-2007-5510 but there are insufficient details to be certain.