Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2004-0638

Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.172
EPSS Ranking 94.6%
CVSS Severity
CVSS v2 Score 8.5
References
Products affected by CVE-2004-0638
  • Oracle » Oracle8i » Version: enterprise_8.1.7.4
    cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7.4
  • Oracle » Oracle8i » Version: standard_8.1.7.4
    cpe:2.3:a:oracle:oracle8i:standard_8.1.7.4
  • Oracle » Oracle9i » Version: enterprise_9.0.1.4
    cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.4
  • Oracle » Oracle9i » Version: enterprise_9.0.1.5
    cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5
  • Oracle » Oracle9i » Version: enterprise_9.2.0.3
    cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.3
  • Oracle » Oracle9i » Version: enterprise_9.2.0.4
    cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.4
  • Oracle » Oracle9i » Version: personal_9.0.1.4
    cpe:2.3:a:oracle:oracle9i:personal_9.0.1.4
  • Oracle » Oracle9i » Version: personal_9.0.1.5
    cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5
  • Oracle » Oracle9i » Version: personal_9.2.0.3
    cpe:2.3:a:oracle:oracle9i:personal_9.2.0.3
  • Oracle » Oracle9i » Version: personal_9.2.0.4
    cpe:2.3:a:oracle:oracle9i:personal_9.2.0.4
  • Oracle » Oracle9i » Version: standard_9.0.1.4
    cpe:2.3:a:oracle:oracle9i:standard_9.0.1.4
  • Oracle » Oracle9i » Version: standard_9.0.1.5
    cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5
  • Oracle » Oracle9i » Version: standard_9.2.0.3
    cpe:2.3:a:oracle:oracle9i:standard_9.2.0.3
  • Oracle » Oracle9i » Version: standard_9.2.0.4
    cpe:2.3:a:oracle:oracle9i:standard_9.2.0.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved