Описание
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-1365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18662
- http://marc.info/?l=bugtraq&m=110382471608835&w=2
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1
- http://www.kb.cert.org/vuls/id/316206
- http://www.ngssoftware.com/advisories/oracle23122004C.txt
- http://www.securityfocus.com/bid/10871
- http://www.us-cert.gov/cas/techalerts/TA04-245A.html
EPSS
Процентиль: 60%
0.00399
Низкий
CVE ID
Связанные уязвимости
nvd
около 21 года назад
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
EPSS
Процентиль: 60%
0.00399
Низкий