What is CVE-2008-3979?

CVE-2008-3979 is a vulnerability in N/a. Published 2009-01-14.

Is CVE-2008-3979 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-3979

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained…

EPSS: 0.516 (98.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

51354 (x_refsource_OSVDB, vdb-entry)
33525 (x_refsource_SECUNIA, third-party-advisory)
1021561 (vdb-entry, x_refsource_SECTRACK)
ADV-2009-0115 (vdb-entry, x_refsource_VUPEN)
www.oracle.com/technetwork/topics/security/cpujan2009-097901.html (x_refsource_CONFIRM)
33177 (vdb-entry, x_refsource_BID)
8074 (exploit, x_refsource_EXPLOIT-DB)
20090113 Trigger Abuse of MDSYS.SDO_TOPO_DROP_FTBL in Oracle 10g R1 and R2 (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2008-3979?: CVE-2008-3979 is a vulnerability in N/a. Published 2009-01-14.
Is CVE-2008-3979 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.