cbcvebase.
CVE-2004-1774
published 2004-08-31

CVE-2004-1774: Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g before 10.1.0.2 Patch 2 allows local users to execute…

high7.2CVSS 3.1
AVLACLAuNCCICAC
EXPLOIT
Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g before 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.

Affected

4 ranges
VendorProductVersion rangeFixed in
oracleapplication_server
oracleoracle10g
oracleoracle10g
oracleoracle10g