ID CVE-2003-0727
Summary Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:database_server:*:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:database_server:*:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 28-09-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
assigner via4 cve@mitre.org
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:P
refmap via4
confirm http://otn.oracle.com/deploy/security/pdf/2003Alert58.pdf
exploit-db 42780
saint via4
  • bid 8375
    description Oracle 9i Release 2 XDB HTTP Pass Overflow
    id database_oracle_xdb
    osvdb 2449
    title oracle_xdb_http_pass_overflow
    type remote
  • bid 8375
    description Oracle 9i Release 2 XDB FTP Pass Overflow
    id database_oracle_xdb
    osvdb 2449
    title oracle_xdb_ftp_pass_overflow
    type remote
vulnerable_product via4 cpe:2.3:a:oracle:database_server:*:*:*:*:*:*:*:*
Last major update 28-09-2017 - 01:29
Published 20-10-2003 - 04:00
Back to Top