Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2007-5507 - Vulnerability Database
Oracle Database Server

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2007-5507

Medium
Reference: CVE-2007-5507
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-5507
Title: Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Overview:

The GIOP service in TNS Listener in the Oracle Net Services component in Oracle Database 9.0.1.5 9.2.0.8 9.2.0.8DV 10.1.0.5 and 10.2.0.3 allows remote attackers to cause a denial of service (crash) or read potentially sensitive memory via a connect GIOP packet with an invalid data size which triggers a buffer over-read aka DB22.