pbsde is a package of stored procedures which is part of the base installation of Oracle Database.
A buffer overflow in the
**sys.pbsde.init** procedure allows database users to execute arbitrary commands.
Apply the patch referenced in the October 2005 Critical Patch Update.
Exploit works on Oracle Database 10g 10.1.0.2 and requires the login and password of a valid database account.