Buffer overflow in otrcrep in Oracle 8.0.x up to and including 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle database server |
||
oracle database server 8.0 |
||
oracle database server 8.1 |