Oracle: >> Oracle9i >> client_9.2.0.2 Security Vulnerabilities
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.
CVSS Score
7.2
EPSS Score
0.203
Published
2004-07-30
Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.
CVSS Score
7.5
EPSS Score
0.026
Published
2003-08-27
Page 2