CVE-2007-5513: CVE-2007-5513

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-5513

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The XML DB (XMLDB) component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 generates incorrect audit entries in the USERID column in which (1) long usernames are trimmed to 5 characters, or (2) short entries contain any extra characters from usernames in previous entries, aka DB23.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Oracle XML DB FTP服务登录审计漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Oracle Database是一款商业性质大型数据库系统。 Oracle的XML DB FTP服务在审计登录时存在几个漏洞，可能在特定情况下导致记录信息不正确。当用户试图通过XDB FTP服务登录时，审计追踪会显示错误的USERID项，这可能会导致两个问题：首先，如果用户以SYSTEM登录的话，USERID列仅显示SYSTE(5个字符)；其次，如果同一用户又试图以FOO用户的身份登录的话，USERID列中会记录FOOTE，其中的TE来自上一次登录的SYSTE[M]。仅在同一个连接的TCP线路上才会出现

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-5513

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-5513

Please Login to view more intelligence information

http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-oracle-xmldb-ftp-service/x_refsource_MISC
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.htmlx_refsource_CONFIRM
http://securityreason.com/securityalert/3247third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/27251third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/26107vdb-entryx_refsource_BID
http://secunia.com/advisories/27409third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1018823vdb-entryx_refsource_SECTRACK
http://www.us-cert.gov/cas/techalerts/TA07-290A.htmlthird-party-advisoryx_refsource_CERT
http://marc.info/?l=bugtraq&m=119332677525918&w=2vendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2007/3626vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/3524vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/archive/1/482426/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2007-5513

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-5513

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2007-5513

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-5513

III. Intelligence Information for CVE-2007-5513

IV. Related Vulnerabilities

V. Comments for CVE-2007-5513

Leave a comment