QwikSec

Security Database

CVE

CWE

Training

CVE-2004-0638

Published: Jan 19, 2005

Modified: Aug 8, 2024

PUBLISHED

Description

Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

oracle-dbmssystem-bo(17254)

vdb-entry

x_refsource_XF

http://www.oracle.com/technology/deploy/security/pdf/2004alert68.pdf

x_refsource_CONFIRM

20040902 Oracle Database Server dbms_system.ksdwrt Buffer Overflow Vulnerability

third-party-advisory

x_refsource_IDEFENSE

vdb-entry

x_refsource_BID

20040905 Buffer Overflow in DBMS_SYSTEM.KSDWRT() in Oracle8i - 9i

mailing-list

x_refsource_FULLDISC

http://www.red-database-security.com/advisory/advisory_20040903_3.htm

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.