Privilege escalation in Oracle Database Server



Published: 2018-08-13
Risk High
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2018-3110
CWE-ID CWE-264
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		Oracle Database Server
Server applications / Database software

Vendor Oracle

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Privilege escalation

EUVDB-ID: #VU14316

Risk: High

CVSSv3.1: 8.6 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-3110

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote authenticated attacker to gain elevated privileges on the target system.

The weakness exists VM component of Oracle Database Server due to insufficient privileges and access controls. A remote attacker who has Create Session privilege with network access via Oracle Net can gain elevated privileges and compromise Java VM.

Successful exploitation of the vulnerability may result in takeover of Java VM.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Oracle Database Server: 11.2.0.4 - 12.2.0.1

External links

http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-3110-verbose-5032194.html#DB


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###