Lucene search
OracleCVELIST:CVE-2009-1991HistoryOct 22, 2009 - 6:00 p.m.
CVE-2009-1991
2009-10-2218:00:00
oracle
www.cve.org
6
Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure.
Related
securityvulns
securityvulns
Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others
2009-11-30 00:00:00
[DSECRG-09-010] Oracle 10g CTXSYS.DRVXTABC - plsql injection
2009-10-28 00:00:00
Oracle multiple security vulnerabilities
2009-11-30 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle Database Server CREATE_TABLES SQL Injection (CVE-2009-1991)
2009-12-17 00:00:00
erpscan
erpscan
Oracle Database 10G CTXSYS.DRVXTABX — PLSQL Injection
2008-01-29 00:00:00
cve
cve
CVE-2009-1991
2009-10-22 18:30:00
prion
prion
Sql injection
2009-10-22 18:30:00
nvd
nvd
CVE-2009-1991
2009-10-22 18:30:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (October 2009 CPU)
2011-11-16 00:00:00
oracle
oracle
Security | Oracle Critical Patch Update - October 2009
2009-10-20 00:00:00