CVE-2003-0894Improper Restriction of Operations within the Bounds of a Memory Buffer in Oracle Oracle9i

3 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.2%
top 55.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Oracle9i
Timeline
PublishedNov 17
Latest updateApr 29

Description

Buffer overflow in the (1) oracle and (2) oracleO programs in Oracle 9i Database 9.0.x and 9.2.x before 9.2.0.4 allows local users to execute arbitrary code via a long command line argument.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDoracle/oracle9i11 versions+10

🔴Vulnerability Details

2
GHSA
GHSA-xmc2-gfmw-wmhg: Buffer overflow in the (1) oracle and (2) oracleO programs in Oracle 9i Database 92022-04-29
CVEList
CVE-2003-0894: Buffer overflow in the (1) oracle and (2) oracleO programs in Oracle 9i Database 92003-10-25
CVE-2003-0894 — Oracle Oracle9i vulnerability | cvebase