Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:21156
HistoryJan 16, 2009 - 12:00 a.m.

Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH Command Buffer Overflow Vulnerability

2009-01-1600:00:00
vulners.com
27
JSON

Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH Command Buffer Overflow Vulnerability
2009.January.13

Fortinet's FortiGuard Global Security Research Team Discovers Vulnerability in Oracle Secure Backup

Summary:

A Buffer Overflow vulnerability exists Oracle Secure Backup 10.2.0.2 through a malformed NDMP
packet.

Impact:

Remote Code Execution

Risk:

Critical (Base Score:10.0)

Affected Software:

Oracle Secure Backup 10.2.0.2

Additional Information:

Sending a malformed NDMP client authentication(NDMP_CONECT_CLIENT_AUTH Command) packet will cause a
overflow a buffer overflow due to
invalid bounds checking.

Solutions:

Use the solution provided by Oracle
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html

The FortiGuard Global Security Research Team released a signature
"Oracle.NDMP.CONNECT.CLIENT.AUTH.User.ID.Buffer.Overflow" on Jan 13 2009, which covers
this specific vulnerability.

Fortinet customers who subscribe to FortinetΠŽΠ‡s intrusion prevention (IPS) service should be
protected against this Remote Code Execution Vulnerability. FortinetΠŽΠ‡s IPS service is one component
of FortiGuard Subscription Services, which also offer comprehensive solutions such as antivirus, Web
content filtering and antispam capabilities. These services enable protection against threats on
both application and network layers. FortiGuard Services are continuously updated by the FortiGuard
Global Security Research Team, which enables Fortinet to deliver a combination of multi-layered
security intelligence and true zero-day protection from new and emerging threats. These updates are
delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows
responsible disclosure guidelines to ensure optimum protection during a threat's lifecycle.

Acknowledgement:

Zhenhualiu and XiaopengZhang of Fortinet's FortiGuard Global Security Research Team

References:

http://www.fortiguardcenter.com/advisory/FGA-2009-02.html
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html

CVE ID: CVE-2008-5444
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-5444

*** This email and any attachments thereto may contain private, confidential, and privileged
material for the sole use of the intended recipient. Any review, copying, or distribution of this
email (or any attachments thereto) by others is strictly prohibited. If you are not the intended
recipient, please contact the sender immediately and permanently delete the original and any copies
of this email and any attachments thereto. ***

Related

checkpoint_advisories 1
saint 4
packetstorm 1
prion 3
cve 3
securityvulns 1
oracle 1
checkpoint_advisories
checkpoint_advisories
Oracle Secure Backup NDMP CONNECT_CLIENT_AUTH Command Buffer Overflow (CVE-2008-5444)
2009-02-23 00:00:00
saint
saint
Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow
2009-01-28 00:00:00
Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow
2009-01-28 00:00:00
Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow
2009-01-28 00:00:00
packetstorm
packetstorm
Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow
2009-11-26 00:00:00
prion
prion
Design/Logic Flaw
2009-01-14 01:30:00
Design/Logic Flaw
2009-01-14 01:30:00
Design/Logic Flaw
2009-01-14 01:30:00
cve
cve
CVE-2008-5449
2009-01-14 01:30:00
CVE-2008-5444
2009-01-14 01:30:00
CVE-2008-5448
2009-01-14 01:30:00
securityvulns
securityvulns
Oracle applications multiple security vulnerabilities
2009-12-15 00:00:00
oracle
oracle
CPU Jan 2009
2009-01-13 00:00:00
JSON
Related for SECURITYVULNS:DOC:21156
checkpoint_advisories1saint4packetstorm1prion3cve3securityvulns1oracle1