Published: 20/10/2003 Updated: 28/09/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 241

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle database server

/* Oracle XDB FTP Service UNLOCK Buffer Overflow Exploit */ /* David Litchfield from ngssoftware (at Blackhat 2003)*/ /* */ /* Original Advisory : */ /* wwwblackhatcom/presentations/bh-usa-03/bh- */ /* us-03-litchfield-paperpdf ...

## # $Id: oracle9i_xdb_passrb 10394 2010-09-20 08:06:27Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' cla ...

## # This file is part of the Metasploit Framework and may be redistributed # according to the licenses defined in the Authors field below In the # case of an unknown or missing license, this file defaults to the same # license as the core Framework (dual GPLv2 and Artistic) The latest # version of the Framework can always be obtained from metasp ...

#Exploit Title:Oracle 9i XDB HTTP PASS Buffer Overflow #Date: 09/25/2017 #Exploit Author: Charles Dardaman #Twitter: twittercom/CharlesDardaman #Website: wwwdardamancom #Version:9201 #Tested on: Windows 2000 SP4 #CVE: 2003-0727 #This is a modified stand alone exploit of wwwexploit-dbcom/exploits/16809/ #!/usr/bin/pyt ...

## # $Id: oracle9i_xdb_ftp_passrb 9179 2010-04-30 08:40:19Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

## # $Id: oracle9i_xdb_ftp_unlockrb 10559 2010-10-05 23:41:17Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core ...

Repository for python exploits

python-exploits Repository for python exploits MS08-067 This module exploits a parsing flaw in the path canonicalization code of NetAPI32dll through the Server Service This module is capable of bypassing NX on some operating systems and service packs The correct target must be used to prevent the Server Service (along with a dozen others in the same process) from crashing W

Repository for python exploits

python-exploits Repository for python exploits MS08-067 This module exploits a parsing flaw in the path canonicalization code of NetAPI32dll through the Server Service This module is capable of bypassing NX on some operating systems and service packs The correct target must be used to prevent the Server Service (along with a dozen others in the same process) from crashing W

NVD-CWE-Other http://otn.oracle.com/deploy/security/pdf/2003Alert58.pdf https://www.exploit-db.com/exploits/42780/https://nvd.nist.gov https://github.com/ankh2054/python-exploits https://www.exploit-db.com/exploits/80/

CVE-2003-0727

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect