CVE-2003-0095
published 2003-03-03CVE-2003-0095: Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary code via a long username that is…
critical10CVSS 3.1
AVNACLAuNCCICAC
Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demonstrated using LOADPSP.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | database_server | — | — |
| oracle | database_server | — | — |
| oracle | database_server | — | — |
| oracle | oracle8i | — | — |
| oracle | oracle8i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=104549693426042&w=2http://otn.oracle.com/deploy/security/pdf/2003alert51.pdfhttp://www.cert.org/advisories/CA-2003-05.htmlhttp://www.ciac.org/ciac/bulletins/n-046.shtmlhttp://www.iss.net/security_center/static/11328.phphttp://www.kb.cert.org/vuls/id/953746http://www.osvdb.org/6319http://www.securityfocus.com/bid/6849http://marc.info/?l=bugtraq&m=104549693426042&w=2http://otn.oracle.com/deploy/security/pdf/2003alert51.pdfhttp://www.cert.org/advisories/CA-2003-05.htmlhttp://www.ciac.org/ciac/bulletins/n-046.shtmlhttp://www.iss.net/security_center/static/11328.phphttp://www.kb.cert.org/vuls/id/953746http://www.osvdb.org/6319http://www.securityfocus.com/bid/6849
2003-03-03
Published