41 matches found
EUVD-2001-0494
Malware in sbrugna...
Oracle 8i TNS Listener SERVICE_NAME Buffer Overflow
No description provided by source. $Id: tnsservicename.rb 11128 2010-11-24 19:43:49Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
Oracle 8.x cmctl Buffer Overflow Vulnerability
No description provided by source. / source: http://www.securityfocus.com/bid/1968/info cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges. The problem occurs in the way cmctl handles the user-supplied command...
Oracle 8i dbsnmp Command Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3903/info Oracle 8i is an enterprise level database solution. It is available on a wide variety of platforms, including many Unix operating systems. It is possible to cause a denial of service condition in Oracle 8i. If...
Oracle 8i TNS Listener Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2941/info Oracle 8i ships with a component called TNS Listener. TNS Listener is used to arbitrate communication between remote database clients/applications and the database server. There exists a remotely exploitable...
Oracle 8i TNS Listener Local Command Parameter Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4413/info Oracle 8i is a powerful relational database product. It is available for Windows, Linux, and a wide range of Unix operating systems. A vulnerability has been reported with some versions of Oracle 8i for Linux. A...
Oracle 8i - TNS Listener 'ARGUMENTS' Remote Buffer Overflow (Metasploit)
$Id: tnsarguments.rb 11122 2010-11-24 06:10:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Oracle 8i - TNS Listener SERVICE_NAME Buffer Overflow (Metasploit)
$Id: tnsservicename.rb 11128 2010-11-24 19:43:49Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
Oracle 8i TNS Listener (ARGUMENTS) Buffer Overflow.
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Oracle 8i TNS...
Apache Win32 Chunked Encoding
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Apache Win32...
Oracle 8i TNS Listener (ARGUMENTS) Buffer Overflow
This module exploits a stack buffer overflow in Oracle 8i. When sending a specially crafted packet containing an overly long ARGUMENTS string to the TNS service, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
CVE-2008-2625: Oracle DBMS – Proxy Authentication Vulnerability
Oracle is a widely-deployed Database Management System DBMS that supports a variety of applications. Many multi-tier applications are designed to use proxy authentication, restricting a middle tier to establish the database connection on behalf of the users. The standard authentication mechanism...
Apache Win32 Chunked Encoding
This module exploits the chunked transfer integer wrap vulnerability in Apache version 1.2.x to 1.3.24. This particular module has been tested with all versions of the official Win32 build between 1.3.9 and 1.3.24. Additionally, it should work against most co-branded and bundled versions of Apach...
CVE-2002-1767
Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument...
CVE-2005-0298
The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information...
[Full-Disclosure] Buffer Overflow in DBMS_SYSTEM.KSDWRT() in Oracle8i - 9i
http://www.red-database-security.com/advisory/advisory200409033.htm RDS200409032 - Red-Database-Security GmbH Research Advisory Name Buffer Overflow in DBMSSYSTEM.KSDWRT in Oracle8i - 9i Systems Affected Oracle 8i - Oracle9i all platforms Severity Medium Risk Category Buffer Overflow/Denial of...
[Full-Disclosure] SQL Injection via CTXSYS.DRILOAD in Oracle 8i/9i
http://www.red-database-security.com/advisory/advisory200409031.htm RDS200409031 - Red-Database-Security GmbH Research Advisory Name SQL Injection via CTXSYS.DRILOAD in Oracle 8i/9i Systems Affected Oracle 8i / Oracle9i all platforms Severity High Risk Category SQL Injection Vendor URL...
CVE-2002-0567
Oracle 8i and 9i with PL/SQL package for External Procedures EXTPROC allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process...
R7-0006: Oracle 8i/9i Listener SERVICE_CURLOAD Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0006 Oracle 8i/9i Listener SERVICECURLOAD Denial of Service...
CVE-2002-0858
CVE-2002-0858 involves the Oracle 9i/8i packages (catsnmp) installed with the dbsnmp user using a default password. The issue allows an attacker to perform restricted database operations and potentially gain additional privileges due to the insecure dbsnmp account. Affected component: catsnmp ins...