Vulnerability Details : CVE-2009-1979
Public exploit exists!
Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution.
Products affected by CVE-2009-1979
- cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:10.2.0.4:*:*:*:*:*:*:*
Threat overview for CVE-2009-1979
Top countries where our scanners detected CVE-2009-1979
Top open port discovered on systems with this issue
1521
IPs affected by CVE-2009-1979 117
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2009-1979!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2009-1979
95.98%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 100 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2009-1979
-
Oracle 10gR2 TNS Listener AUTH_SESSKEY Buffer Overflow
Disclosure Date: 2009-10-20First seen: 2020-04-26exploit/windows/oracle/tns_auth_sesskeyThis module exploits a stack buffer overflow in Oracle. When sending a specially crafted packet containing a long AUTH_SESSKEY value to the TNS service, an attacker may be able to execute arbitrary code. Authors: - jduck <jduck@metasploit.com>
CVSS scores for CVE-2009-1979
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2009-1979
-
http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html
Page not found | Oracle
-
http://blogs.conus.info/node/28
Dennis Yurichev: 30-Oct-2009: CVE-2009-1979 PoC (CPUoct2009)
-
http://www.us-cert.gov/cas/techalerts/TA09-294A.html
Oracle Updates for Multiple Vulnerabilities | CISAUS Government Resource
-
http://www.securityfocus.com/archive/1/507598/100/0/threaded
-
http://www.securityfocus.com/bid/36747
Oracle Network Authentication CVE-2009-1979 Remote Buffer Overflow Vulnerability
-
http://www.securitytracker.com/id?1023057
Jump to