Unspecified vulnerability in Oracle Spatial component in Oracle Database 10.2.0.2 has unknown impact and remote authenticated attack vectors related to "create session" privileges, aka Vuln# DB02. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB02 is for SQL injection in the SDO_DROP_USER_BEFORE package using a Trigger for a DROP USER statement in an anonymous PL/SQL block.
References
Configurations
Information
Published : 2006-10-17 18:07
Updated : 2018-10-17 14:42
NVD link : CVE-2006-5333
Mitre link : CVE-2006-5333
JSON object : View
CWE
Products Affected
oracle
- database_server