Family: Databases --> Category: infos
Oracle timezone overflow Vulnerability Scan
Vulnerability Scan Summary
Checks the version of the remote database
Detailed Explanation for this Vulnerability Test
The remote Oracle Database, according to its version number, is vulnerable
to a buffer overflow in the query SET TIME_ZONE.
A possible hacker with a database account may use this flaw to gain the control
on the whole database, or even to obtain a shell on this host.
Solution : Upgrade to Oracle 220.127.116.11 - http://metalink.oracle.com
See also : http://www.nextgenss.com/advisories/ora_time_zone.txt
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.