CVE-2003-1208
7.2 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
77.8%
Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FROM_TZ functions.
References
archives.neohapsis.com/archives/vulnwatch/2004-q1/0030.html
secunia.com/advisories/10805
www.ciac.org/ciac/bulletins/o-093.shtml
www.kb.cert.org/vuls/id/240174
www.kb.cert.org/vuls/id/399806
www.kb.cert.org/vuls/id/819126
www.kb.cert.org/vuls/id/846582
www.nextgenss.com/advisories/ora_from_tz.txt
www.nextgenss.com/advisories/ora_numtodsinterval.txt
www.nextgenss.com/advisories/ora_numtoyminterval.txt
www.nextgenss.com/advisories/ora_time_zone.txt
www.osvdb.org/3837
www.osvdb.org/3838
www.osvdb.org/3839
www.osvdb.org/3840
www.securityfocus.com/bid/9587
exchange.xforce.ibmcloud.com/vulnerabilities/15060
Social References
More
7.2 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
77.8%