Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g prior to 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle application server 10.1.0.2 |
||
oracle oracle10g enterprise_10.1.0.2 |
||
oracle oracle10g personal_10.1.0.2 |
||
oracle oracle10g standard_10.1.0.2 |