CVE-2008-3996

Published: Oct 14, 2008Modified: Apr 23, 2026

5.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:N

Exploitability: 8.0 / Impact: 4.9

Source: NVD

Description

Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_CDC_IPUBLISH.

Affected (3)

Products: Oracle: Database 10g, Database 11i

Oracle

2 products

Database 10g

Database 11i

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Oracle Database 10g	Version 10.1.0.5
Oracle Database 10g	Version 10.2.0.4
Oracle Database 11i	Version 11.1.0.6

References (8)

http://secunia.com/advisories/32291

Source: secalert_us@oracle.com

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html

Source: secalert_us@oracle.com

http://www.vupen.com/english/advisories/2008/2825

Source: secalert_us@oracle.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/45900

Source: secalert_us@oracle.com

http://secunia.com/advisories/32291

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/2825

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/45900

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.