Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:04DD208BA81F3E948C0AD762F543C3E5
HistoryNov 07, 2006 - 12:00 a.m.

Oracle Security Component sys.pbsde buffer overflow

2006-11-0700:00:00
SAINT Corporation
www.saintcorporation.com
10

0.004 Low

EPSS

Percentile

71.5%

JSON

Added: 11/07/2006
CVE: CVE-2005-3438
BID: 15134
OSVDB: 20612

Background

pbsde is a package of stored procedures which is part of the base installation of Oracle Database.

Problem

A buffer overflow in the **sys.pbsde.init** procedure allows database users to execute arbitrary commands.

Resolution

Apply the patch referenced in the October 2005 Critical Patch Update.

References

<http://www.us-cert.gov/cas/techalerts/TA05-292A.html&gt;
<http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0430.html&gt;

Limitations

Exploit works on Oracle Database 10g 10.1.0.2 and requires the login and password of a valid database account.

Platforms

Windows

Related

checkpoint_advisories 1
cve 1
saint 3
checkpoint_advisories
checkpoint_advisories
Oracle Database sys.pbsde.init Procedure Buffer Overflow (CVE-2005-3438)
2009-11-26 00:00:00
cve
cve
CVE-2005-3438
2005-11-02 11:02:00
saint
saint
Oracle Security Component sys.pbsde buffer overflow
2006-11-07 00:00:00
Oracle Security Component sys.pbsde buffer overflow
2006-11-07 00:00:00
Oracle Security Component sys.pbsde buffer overflow
2006-11-07 00:00:00

0.004 Low

EPSS

Percentile

71.5%

JSON
Related for SAINT:04DD208BA81F3E948C0AD762F543C3E5
checkpoint_advisories1cve1saint3