Signature Detail
Short Name |
DB:ORACLE:TNS:AUTH-SESSKEY |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
DB |
Keywords |
Oracle Database Server Network Authentication AUTH_SESSKEY Buffer Overflow |
Release Date |
2010/10/13 |
Update Number |
1791 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
DB: Oracle Database Server Network Authentication AUTH_SESSKEY Buffer Overflow
This signature detects attempts to exploit a known buffer overflow vulnerability in Oracle Database server. It is due to a insufficient validation on the length field of the AUTH_SESSKEY parameter. Remote unauthenticated attackers can exploit this by sending malicious packets to the target server. A successful attack can allow for arbitrary code injection and execution with the SYSTEM privileges.
Extended Description
Oracle Network Authentication is prone to a remote buffer-overflow vulnerability. The vulnerability can be exploited over the 'Oracle Net' protocol. An attacker doesn't need specific privileges to exploit this vulnerability. Oracle Database 10g versions 10.1.0.5 and 10.2.0.4.
Affected Products
- Oracle Oracle10g Enterprise Edition 10.1.0 .5
- Oracle Oracle10g Enterprise Edition 10.2.0.4
- Oracle Oracle10g Standard Edition 10.1.0 .5
- Oracle Oracle10g Standard Edition 10.2.0.4
References
- BugTraq: 36747
- CVE: CVE-2009-1979