NVD Vulnerability Detail

CVE-2005-1495

Summary	Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for attackers to escape detection.
Summary	Applying patchset 10.1.0.4 is fixing this issue for Oracle 10g. Oracle 9i is still vulnerable.
Publication Date	May 11, 2005, 1 p.m.
Registration Date	Jan. 29, 2021, 5:58 p.m.
Last Update	July 11, 2017, 10:32 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:oracle:application_server:10.1.0.2:::::::*
cpe:2.3:a:oracle:application_server:10.1.0.3:::::::*
cpe:2.3:a:oracle:application_server:10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.0:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.2:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.3:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.4:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:9.2.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.2.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:release_2_9.2.1:::::::*
cpe:2.3:a:oracle:oracle9i:release_2_9.2.2:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://marc.info/?l=bugtraq&m=111531683824209&w=2	BUGTRAQ
2	http://www.kb.cert.org/vuls/id/777773	CERT-VN	Third Party Advisory US Government Resource
3	http://www.red-database-security.com/advisory/oracle-fine-grained-auditing-issue.html	MISC	Exploit Vendor Advisory
4	http://www.securityfocus.com/bid/16258	BID
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/20407	XF

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:oracle:application_server:10.1.0.2:::::::*
cpe:2.3:a:oracle:application_server:10.1.0.3:::::::*
cpe:2.3:a:oracle:application_server:10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:personal_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.2:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3:::::::*
cpe:2.3:a:oracle:oracle10g:standard_10.1.0.3.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.0:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.2:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.3:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.1.4:::::::*
cpe:2.3:a:oracle:oracle9i:9.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:9.2.0.1:::::::*
cpe:2.3:a:oracle:oracle9i:9.2.0.2:::::::*
cpe:2.3:a:oracle:oracle9i:release_2_9.2.1:::::::*
cpe:2.3:a:oracle:oracle9i:release_2_9.2.2:::::::*