Unrated severityNVD Advisory· Published Jan 17, 2007· Updated Jun 16, 2026
CVE-2007-0268
CVE-2007-0268
Description
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.5 have unknown impact and attack vectors related to (1) the Advanced Queuing component and sys.dbms_aqsys.dbms_aq privileges (DB01), (2) Advanced Replication and sys.dbms_repcat_untrusted (DB07), and (3) Oracle Text and ctxload (DB15). NOTE: Oracle has not publicly claims by reliable researchers that DB01 is for SQL injection in the SYS.DBMS_AQ_INV package, and DB07 is for a buffer overflow in the UNREGISTER_SNAPSHOT procedure in the DBMS_REPCAT_UNTRUSTED package.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:9.0.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:9.2.0.7:*:*:*:*:*:*:*
- Range: = 9.0.1.5
- Range: = 9.2.0.7
Patches
Vulnerability mechanics
References
13- secunia.com/advisories/23794nvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/221788nvdPatchUS Government Resource
- www.us-cert.gov/cas/techalerts/TA07-017A.htmlnvdPatchUS Government Resource
- www.securityfocus.com/bid/22083nvdExploitPatch
- osvdb.org/32907nvd
- osvdb.org/32913nvd
- osvdb.org/32921nvd
- securitytracker.com/idnvd
- www.oracle.com/technetwork/topics/security/cpujan2007-101493.htmlnvd
- www.red-database-security.com/advisory/oracle_sql_injection_dbms_aq_inv.htmlnvd
- www.securityfocus.com/archive/1/458005/100/0/threadednvd
- www.securityfocus.com/archive/1/458475/100/100/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/31541nvd
News mentions
0No linked articles in our index yet.