PT-2003-1941 · Oracle · Oracle 9I Database

Publicado

2003-10-25

Atualizado

2017-07-11

CVE-2003-0894

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Oracle 9i Database versions 9.0.x through 9.2.x before 9.2.0.4 Oracle 9i Database version 9.2.0.4 and later are not affected, but since only versions before 9.2.0.4 are vulnerable, the correct representation is: Oracle 9i Database versions prior to 9.2.0.4

Description A buffer overflow issue exists in the oracle and oracleO programs, allowing local users to execute arbitrary code via a long command line argument.

Recommendations For Oracle 9i Database versions prior to 9.2.0.4, update to version 9.2.0.4 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-0894

Produtos afetados

Oracle 9I Database

PT-2003-1941 · Oracle · Oracle 9I Database

CVE-2003-0894

Identificadores relacionados

Produtos afetados

Referências · 7