VYPR
Unrated severityNVD Advisory· Published Mar 14, 2007· Updated Jun 16, 2026

CVE-2007-1442

CVE-2007-1442

Description

Oracle Database 10g uses a NULL pDacl parameter when calling the SetSecurityDescriptorDacl function to create discretionary access control lists (DACLs), which allows local users to gain privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:oracle:database_server:10.2.1:*:enterprise:*:*:*:*:*+ 8 more
    • cpe:2.3:a:oracle:database_server:10.2.1:*:enterprise:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.1:*:personal:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.1:*:standard:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.2:*:enterprise:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.2:*:personal:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.2:*:standard:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.3:*:enterprise:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.3:*:personal:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:10.2.3:*:standard:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.