SAINT CorporationSAINT:C92EC71290FFC687B136AB1A68793851Oracle 9i Release 2 XDB FTP Pass Overflow
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.932 High
EPSS
Percentile
99.1%
Added: 02/25/2009
CVE: CVE-2003-0727
BID: 8375
OSVDB: 2449
Background
Oracle 9i release 2 includes the XDB FTP service which by default listens on port 2100.
Problem
A buffer overflow vulnerability in the parsing of credentials passed to the server allows remote attackers to execute arbitrary commands by sending a long username or password during authentication.
Resolution
The vulnerability is fixed in Oracle 9i version 9.2.0.4. To download and install the relevant patches follow the guide included in <http://www.oracle.com/technology/deploy/security/pdf/2003Alert58.pdf>.
References
<http://otn.oracle.com/deploy/security/pdf/2003Alert58.pdf>
<http://www.blackhat.com/presentations/bh-usa-03/bh-us-03-litchfield-paper.pdf>
<http://www.appsecinc.com/resources/alerts/oracle/2003-0005.html>
Limitations
Exploit works against version 9.2.0.1
Platforms
Windows Server 2003 SP2 / Windows Server 2003
Windows Server 2003 SP1
Windows Server 2003 SP0,SP1,SP2 DEP-Disabled
Windows 2000
Related
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.932 High
EPSS
Percentile
99.1%