Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 8.5 | Impact Score: 10 | Exploitability Score: 6.8

VMScore: 756

Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle oracle9i enterprise_9.0.1.4
oracle oracle9i enterprise_9.0.1.5
oracle oracle9i standard_9.0.1.4
oracle oracle9i standard_9.0.1.5
oracle oracle9i enterprise_9.2.0.3
oracle oracle9i enterprise_9.2.0.4
oracle oracle9i standard_9.2.0.3
oracle oracle9i standard_9.2.0.4
oracle oracle8i enterprise_8.1.7.4
oracle oracle8i standard_8.1.7.4
oracle oracle9i personal_9.2.0.3
oracle oracle9i personal_9.2.0.4
oracle oracle9i personal_9.0.1.4
oracle oracle9i personal_9.0.1.5

CWE-119 http://www.idefense.com/application/poi/display?id=135&type=vulnerabilities&flashstatus=false http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0178.html http://www.red-database-security.com/advisory/advisory_20040903_3.htm http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf http://www.securityfocus.com/bid/11100 https://exchange.xforce.ibmcloud.com/vulnerabilities/17254 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-0638

Vulnerability Summary

References

Vulmon Search

About

Products

Connect