CVE

Id
9065  
CVE No.
CVE-2004-0637  
Status
Candidate  
Description
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.  
Phase
Assigned (20040707)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
58881 9065 CVE-2004-0637 IDEFENSE:20040902 Oracle Database Server ctxsys.driload Access Validation Vulnerability  View
58882 9065 CVE-2004-0637 URL:http://www.idefense.com/application/poi/display?id=136&type=vulnerabilities&flashstatus=true  View
58883 9065 CVE-2004-0637 CERT-VN:VU#316206  View
58884 9065 CVE-2004-0637 URL:http://www.kb.cert.org/vuls/id/316206  View
58885 9065 CVE-2004-0637 BID:11099  View
58886 9065 CVE-2004-0637 URL:http://www.securityfocus.com/bid/11099  View
58887 9065 CVE-2004-0637 SECUNIA:12409  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
63022 JVNDB-2004-000364 Oracle Database の dbms_system.ksdwrt プロシージャにおいて任意のコードを実行される脆弱性 Oracle Database に含まれる dbms_system.ksdwrt プロシージャには、第二引数の文字列の長さのチェックの不備のため、過度に長い文字列が渡された場合、バッファオーバーフローが発生する脆弱性が存在します。 CVE-2004-0638 9065 7.5 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000364.html  View