CVE-2007-3856 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the Oracle Data Mining component for Oracle Database 10g Release 2 10.2.0.2 and 10.2.0.3, 10g 10.1.0.5, and Oracle9i Database Release 2 9.2.0.7, 9.2.0.8, and 9.2.0.8DV has unknown impact and remote authenticated attack vectors related to DMSYS.DMP_SYS, aka DB04.

Affected Software

Name	Vendor	Start Version	End Version
Database_server	Oracle	10.2.0.2	10.2.0.2
Database_server	Oracle	9.2.0.8	9.2.0.8
Database_server	Oracle	9.2.0.8dv	9.2.0.8dv
Database_server	Oracle	10.2.0.3	10.2.0.3
Database_server	Oracle	9.2.0.7	9.2.0.7
Oracle10g	Oracle	standard_10.1.0.5	standard_10.1.0.5

References

http://www.red-database-security.com/advisory/oracle_cpu_jul_2007.html
http://secunia.com/advisories/26114
http://www.integrigy.com/security-resources/analysis/Integrigy_Oracle_CPU_July_2007_Analysis.pdf
http://www.us-cert.gov/cas/techalerts/TA07-200A.html
http://www.securitytracker.com/id?1018415
http://secunia.com/advisories/26166
http://www.vupen.com/english/advisories/2007/2562
http://www.vupen.com/english/advisories/2007/2635
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c00727143
http://www.oracle.com/technetwork/topics/security/cpujul2007-087014.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/35490

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3856
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html