Vulnerabilities > CVE-2008-5444 - Multiple vulnerability in Oracle Secure Backup 10.2.0.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2008-5448 and CVE-2008-5449.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow. CVE-2008-5444. Remote exploit for windows platform |
id | EDB-ID:16343 |
last seen | 2016-02-01 |
modified | 2010-05-09 |
published | 2010-05-09 |
reporter | metasploit |
source | https://www.exploit-db.com/download/16343/ |
title | Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow |
Metasploit
description | The module exploits a stack buffer overflow in Oracle Secure Backup. When sending a specially crafted NDMP_CONNECT_CLIENT_AUTH packet, an attacker may be able to execute arbitrary code. |
id | MSF:EXPLOIT/WINDOWS/ORACLE/OSB_NDMP_AUTH |
last seen | 2020-05-26 |
modified | 2017-07-24 |
published | 2009-02-23 |
references | |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/oracle/osb_ndmp_auth.rb |
title | Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow |
Packetstorm
data source | https://packetstormsecurity.com/files/download/83159/osb_ndmp_auth.rb.txt |
id | PACKETSTORM:83159 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | MC |
source | https://packetstormsecurity.com/files/83159/Oracle-Secure-Backup-NDMP_CONNECT_CLIENT_AUTH-Buffer-Overflow.html |
title | Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow |
Saint
bid 33177 description Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow id database_oracle_backupndmpbo,database_oracle_backupver osvdb 51340 title oracle_secure_backup_ndmp_clientauth type remote bid 33177 description Oracle Secure Backup login.php ora_osb_lcookie command execution id database_oracle_backupver osvdb 51343 title oracle_secure_backup_login_lcookie type remote bid 33177 description Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow title weblogic_iis_connector_jsessionid type remote bid 33177 description Oracle Secure Backup login.php rbtool command injection id database_oracle_backupver osvdb 51342 title oracle_secure_backup_login_rbtool type remote bid 33177 description Oracle Database OLAP component ODCITABLESTART buffer overflow id database_oracle_version osvdb 51347 title oracle_olap_odcitablestart type remote