Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.
| CVE ID | Name | Status | References |
|---|---|---|---|
| CVE-2003-0634 | Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name. |
Assigned (20030801) | BID:8267 | URL:http://www.securityfocus.com/bid/8267 | BUGTRAQ:20030725 Oracle Extproc Buffer Overflow (#NISR25072003) | URL:http://marc.info/?l=bugtraq&m=105914979629857&w=2 | BUGTRAQ:20030725 question about oracle advisory | URL:http://marc.info/?l=bugtraq&m=105916455814904&w=2 | CERT-VN:VU#936868 | URL:http://www.kb.cert.org/vuls/id/936868 | CONFIRM:http://otn.oracle.com/deploy/security/pdf/2003alert57.pdf | NTBUGTRAQ:20030725 Oracle Extproc Buffer Overflow (#NISR25072003) | URL:http://marc.info/?l=ntbugtraq&m=105915485303327&w=2 | VULNWATCH:20030912 Update to the Oracle EXTPROC advisory | URL:http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0105.html | XF:oracle-extproc-bo(12721) | URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/12721 |
Page created: