What is the severity of CVE-2006-1705?

CVE-2006-1705 is considered a high severity vulnerability due to its potential to allow unauthorized modification of data.

How do I fix CVE-2006-1705?

To fix CVE-2006-1705, database administrators should apply the latest patches released by Oracle for affected versions.

Which Oracle Database versions are affected by CVE-2006-1705?

CVE-2006-1705 affects Oracle Database versions 9.2.0.0 to 10.2.0.3.

What types of operations can be performed through the crafted view in CVE-2006-1705?

Attackers can perform insert, update, or delete operations on the base table through a crafted view with 'SELECT' privileges.

Who can exploit CVE-2006-1705?

Local users with 'SELECT' privileges on a base table can exploit CVE-2006-1705 to modify data unauthorizedly.

Vulnerability/
CVE-2006-1705

low

2.1

CWE

NVD-CWE-Other

11/4/2006

7/8/2024

CVE-2006-1705

First published: Tue Apr 11 2006(Updated: )

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Oracle Database 10g	=enterprise_10.1.0.2
Oracle Database 10g	=enterprise_10.1.0.3
Oracle Database 10g	=enterprise_10.1.0.3.1
Oracle Database 10g	=enterprise_10.1.0.4
Oracle Database 10g	=enterprise_10.2.3
Oracle Database 10g	=personal_10.1.0.2
Oracle Database 10g	=personal_10.1.0.3
Oracle Database 10g	=personal_10.1.0.3.1
Oracle Database 10g	=personal_10.1.0.4
Oracle Database 10g	=personal_10.2.3
Oracle Database 10g	=standard_10.1.0.2
Oracle Database 10g	=standard_10.1.0.3
Oracle Database 10g	=standard_10.1.0.3.1
Oracle Database 10g	=standard_10.1.0.4
Oracle Database 10g	=standard_10.1.0.4.2
Oracle Database 10g	=standard_10.1.0.5
Oracle Database 10g	=standard_10.2.0.1
Oracle Database 10g	=standard_10.2.3
Oracle Oracle9i	=enterprise_9.2.0
Oracle Oracle9i	=enterprise_9.2.0.1
Oracle Oracle9i	=enterprise_9.2.0.2
Oracle Oracle9i	=enterprise_9.2.0.3
Oracle Oracle9i	=enterprise_9.2.0.5
Oracle Oracle9i	=enterprise_9.2.0.6
Oracle Oracle9i	=personal_9.2
Oracle Oracle9i	=personal_9.2.0.1
Oracle Oracle9i	=personal_9.2.0.2
Oracle Oracle9i	=personal_9.2.0.3
Oracle Oracle9i	=personal_9.2.0.5
Oracle Oracle9i	=personal_9.2.0.6
Oracle Oracle9i	=standard_9.2
Oracle Oracle9i	=standard_9.2.0.1
Oracle Oracle9i	=standard_9.2.0.2
Oracle Oracle9i	=standard_9.2.0.3
Oracle Oracle9i	=standard_9.2.0.5
Oracle Oracle9i	=standard_9.2.0.6
Oracle Oracle9i	=standard_9.2.0.7
Oracle Oracle9i	=standard_9.2.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-1705?
CVE-2006-1705 is considered a high severity vulnerability due to its potential to allow unauthorized modification of data.
How do I fix CVE-2006-1705?
To fix CVE-2006-1705, database administrators should apply the latest patches released by Oracle for affected versions.
Which Oracle Database versions are affected by CVE-2006-1705?
CVE-2006-1705 affects Oracle Database versions 9.2.0.0 to 10.2.0.3.
What types of operations can be performed through the crafted view in CVE-2006-1705?
Attackers can perform insert, update, or delete operations on the base table through a crafted view with 'SELECT' privileges.
Who can exploit CVE-2006-1705?
Local users with 'SELECT' privileges on a base table can exploit CVE-2006-1705 to modify data unauthorizedly.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/weakness
agent/references
agent/last-modified-date
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/oracle
canonical/oracle database 10g
version/oracle database 10g/enterprise_10.1.0.2
version/oracle database 10g/enterprise_10.1.0.3
version/oracle database 10g/enterprise_10.1.0.3.1
version/oracle database 10g/enterprise_10.1.0.4
version/oracle database 10g/enterprise_10.2.3
version/oracle database 10g/personal_10.1.0.2
version/oracle database 10g/personal_10.1.0.3
version/oracle database 10g/personal_10.1.0.3.1
version/oracle database 10g/personal_10.1.0.4
version/oracle database 10g/personal_10.2.3
version/oracle database 10g/standard_10.1.0.2
version/oracle database 10g/standard_10.1.0.3
version/oracle database 10g/standard_10.1.0.3.1
version/oracle database 10g/standard_10.1.0.4
version/oracle database 10g/standard_10.1.0.4.2
version/oracle database 10g/standard_10.1.0.5
version/oracle database 10g/standard_10.2.0.1
version/oracle database 10g/standard_10.2.3
canonical/oracle oracle9i
version/oracle oracle9i/enterprise_9.2.0
version/oracle oracle9i/enterprise_9.2.0.1
version/oracle oracle9i/enterprise_9.2.0.2
version/oracle oracle9i/enterprise_9.2.0.3
version/oracle oracle9i/enterprise_9.2.0.5
version/oracle oracle9i/enterprise_9.2.0.6
version/oracle oracle9i/personal_9.2
version/oracle oracle9i/personal_9.2.0.1
version/oracle oracle9i/personal_9.2.0.2
version/oracle oracle9i/personal_9.2.0.3
version/oracle oracle9i/personal_9.2.0.5
version/oracle oracle9i/personal_9.2.0.6
version/oracle oracle9i/standard_9.2
version/oracle oracle9i/standard_9.2.0.1
version/oracle oracle9i/standard_9.2.0.2
version/oracle oracle9i/standard_9.2.0.3
version/oracle oracle9i/standard_9.2.0.5
version/oracle oracle9i/standard_9.2.0.6
version/oracle oracle9i/standard_9.2.0.7
version/oracle oracle9i/standard_9.2.3