Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2003-1208

Published: 03/12/2004 Updated: 11/07/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Oracle

Vulnerability Summary

Multiple buffer overflows in Oracle 9i 9 prior to 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FROM_TZ functions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

oracle oracle9i enterprise_9.0.1

oracle oracle9i enterprise_9.2.0

oracle oracle9i standard_9.0

oracle oracle9i standard_9.0.1

oracle oracle9i enterprise_9.2.0.1

oracle oracle9i enterprise_9.2.0.2

oracle oracle9i standard_9.0.1.2

oracle oracle9i standard_9.0.1.3

oracle oracle9i personal_9.2.0.1

oracle oracle9i personal_9.2.0.2

oracle oracle9i standard_9.2.0.1

oracle oracle9i standard_9.2.0.2

oracle oracle9i personal_9.0.1

oracle oracle9i personal_9.2

oracle oracle9i standard_9.0.1.4

oracle oracle9i standard_9.0.2

oracle oracle9i standard_9.2

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/vulnwatch/2004-q1/0030.htmlhttp://www.nextgenss.com/advisories/ora_from_tz.txthttp://www.nextgenss.com/advisories/ora_numtodsinterval.txthttp://www.nextgenss.com/advisories/ora_numtoyminterval.txthttp://www.nextgenss.com/advisories/ora_time_zone.txthttp://www.kb.cert.org/vuls/id/240174http://www.kb.cert.org/vuls/id/399806http://www.kb.cert.org/vuls/id/819126http://www.kb.cert.org/vuls/id/846582http://www.ciac.org/ciac/bulletins/o-093.shtmlhttp://www.securityfocus.com/bid/9587http://www.osvdb.org/3837http://www.osvdb.org/3838http://www.osvdb.org/3839http://www.osvdb.org/3840http://secunia.com/advisories/10805https://exchange.xforce.ibmcloud.com/vulnerabilities/15060https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook