CVE Vulnerabilities

CVE-2007-5513

Published: Oct 17, 2007 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The XML DB (XMLDB) component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 generates incorrect audit entries in the USERID column in which (1) long usernames are trimmed to 5 characters, or (2) short entries contain any extra characters from usernames in previous entries, aka DB23.

Affected Software

Name Vendor Start Version End Version
Database_server Oracle 9.2.0.8 (including) 9.2.0.8 (including)
Database_server Oracle 9.2.0.8dv (including) 9.2.0.8dv (including)
Database_server Oracle 10.1.0.5 (including) 10.1.0.5 (including)

References