Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:868EBEF4A411E764478BB819AFFC83B4
HistoryDec 18, 2006 - 12:00 a.m.

Oracle MD2 component SDO_CODE_SIZE buffer overflow

2006-12-1800:00:00
SAINT Corporation
www.saintcorporation.com
105

0.973 High

EPSS

Percentile

99.9%

JSON

Added: 12/18/2006
CVE: CVE-2004-1774
BID: 10871
OSVDB: 9867

Background

Oracle Database is a relational database solution available for multiple platforms.

Problem

A buffer overflow in the SDO_CODE_SIZE function in the MD2 component of Oracle Database allows remote attackers to execute arbitrary commands.

Resolution

Apply the update referenced in Oracle Alert #68.

References

<http://www.kb.cert.org/vuls/id/316206&gt;
<http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0041.html&gt;

Limitations

Exploit works on Oracle Database 10g 10.1.0.2 and requires the login and password of a valid database user.

Platforms

Windows

Related

saint 3
cve 1
nessus 2
saint
saint
Oracle MD2 component SDO_CODE_SIZE buffer overflow
2006-12-18 00:00:00
Oracle MD2 component SDO_CODE_SIZE buffer overflow
2006-12-18 00:00:00
Oracle MD2 component SDO_CODE_SIZE buffer overflow
2006-12-18 00:00:00
cve
cve
CVE-2004-1774
2004-08-31 04:00:00
nessus
nessus
Oracle Database 10g Multiple Remote Vulnerabilities
2005-04-13 00:00:00
Oracle Application Server Multiple Vulnerabilities
2012-01-24 00:00:00

0.973 High

EPSS

Percentile

99.9%

JSON
Related for SAINT:868EBEF4A411E764478BB819AFFC83B4
saint3cve1nessus2