CVE-2004-0637
published 2004-09-02CVE-2004-0637: Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is…
PriorityP338medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
17.82%
96.8th percentile
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | oracle8i | — | — |
| oracle | oracle8i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
| oracle | oracle9i | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/12409/http://www.idefense.com/application/poi/display?id=136&type=vulnerabilities&flashstatus=truehttp://www.kb.cert.org/vuls/id/316206http://www.securityfocus.com/bid/11099http://secunia.com/advisories/12409/http://www.idefense.com/application/poi/display?id=136&type=vulnerabilities&flashstatus=truehttp://www.kb.cert.org/vuls/id/316206http://www.securityfocus.com/bid/11099
2004-09-02
Published