|
|
CVE Reference: CVE-2004-0638 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2004-0638 |
|
|
Description: Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/17254 MISC http://www.red-database-security.com/advisory/advisory_20040903_3.htm IDEFENSE http://www.idefense.com/application/poi/display?id=135&type=vulnerabilities&flashstatus=false FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0178.html CONFIRM http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf BID 11100 |
|
| Return to the previous page. |
