Home page logo
  • Nmap Security Scanner
  • Security Lists
  • Security Tools
  • Site News
  • Advertising
  • About/Contact
  • Sponsors:



/

fulldisclosure logo Full Disclosure mailing list archives

Re: ZDI-10-121: Command Injection Remote Code Execution Vulnerability
From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Thu, 15 Jul 2010 01:04:58 +0300 (EEST)
Is the affected product Secure Backup accidentally missing from the subject line and the advisory title,
i.e. the correct title is Oracle Secure Backup Administration selector Command Injection Remote Code Execution 
Vulnerability?

Juha-Matti

ZDI Disclosures [zdi-disclosures () tippingpoint com] kirjoitti: 

ZDI-10-121: Command Injection Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-121
July 13, 2010

-- CVSS:
10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)

-- Affected Vendors:
Oracle

-- Affected Products:
Oracle Secure Backup

--clip--

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • Re: ZDI-10-121: Command Injection Remote Code Execution Vulnerability Juha-Matti Laurio (Jul 14)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]