Unrated severityNVD Advisory· Published Mar 14, 2007· Updated Jun 16, 2026
CVE-2007-1442
CVE-2007-1442
Description
Oracle Database 10g uses a NULL pDacl parameter when calling the SetSecurityDescriptorDacl function to create discretionary access control lists (DACLs), which allows local users to gain privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:oracle:database_server:10.2.1:*:enterprise:*:*:*:*:*+ 8 more
- cpe:2.3:a:oracle:database_server:10.2.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.1:*:personal:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.1:*:standard:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.2:*:enterprise:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.2:*:personal:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.2:*:standard:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.3:*:enterprise:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.3:*:personal:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.3:*:standard:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/22905nvdExploit
- secunia.com/advisories/24475nvdVendor Advisory
- argeniss.com/research/10MinSecAudit.zipnvd
- osvdb.org/33979nvd
News mentions
0No linked articles in our index yet.