Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle oracle9i 9.0.2 |
||
oracle oracle9i 9.0 |
||
oracle oracle9i 9.0.1 |