Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0096

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2003-0096
Last Modified 10 Sep 2008 12:00:00
Published 03 Mar 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2003-0096

Summary

Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function.

Vulnerable Systems

Application

  • Oracle Database Server 8.0.6

  • Oracle Database Server 9.2.1

  • Oracle Database Server 9.2.2

  • Oracle8i 8.1.7

  • Oracle8i 8.1.7.1

  • Oracle9i 9.0

  • Oracle9i 9.0.1

  • Oracle9i 9.0.1.2

  • Oracle9i 9.0.1.3

  • Oracle9i 9.0.2


References

CERT-VN - VU#840666

CERT-VN - VU#743954

CERT-VN - VU#663786

CERT - CA-2003-05

BID - 6850

BID - 6848

BID - 6847

MISC - http://www.nextgenss.com/advisories/ora-tzofstbo.txt

MISC - http://www.nextgenss.com/advisories/ora-tmstmpbo.txt

MISC - http://www.nextgenss.com/advisories/ora-bfilebo.txt

XF - oracle-totimestamptz-bo(11327)

XF - oracle-tzoffset-bo(11326)

XF - oracle-bfilename-directory-bo(11325)

CIAC - N-046

CONFIRM - http://otn.oracle.com/deploy/security/pdf/2003alert50.pdf

CONFIRM - http://otn.oracle.com/deploy/security/pdf/2003alert49.pdf

CONFIRM - http://otn.oracle.com/deploy/security/pdf/2003alert48.pdf

BUGTRAQ - 20030217 Oracle bfilename function buffer overflow vulnerability (#NISR16022003e)

BUGTRAQ - 20030217 Oracle TZ_OFFSET Remote System Buffer Overrun (#NISR16022003c)

BUGTRAQ - 20030217 Oracle TO_TIMESTAMP_TZ Remote System Buffer Overrun (#NISR16022003b)

VULNWATCH - 20030217 Oracle unauthenticated remote system compromise (#NISR16022003a)


Last Updated: 27 May 2016 10:37:47