mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
172 lines
6.5 KiB
JSON
172 lines
6.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2003-0096",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://otn.oracle.com/deploy/security/pdf/2003alert48.pdf",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://otn.oracle.com/deploy/security/pdf/2003alert48.pdf"
|
|
},
|
|
{
|
|
"name": "http://www.nextgenss.com/advisories/ora-tmstmpbo.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://www.nextgenss.com/advisories/ora-tmstmpbo.txt"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle bfilename function buffer overflow vulnerability (#NISR16022003e)",
|
|
"refsource": "VULNWATCH",
|
|
"url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0083.html"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle TZ_OFFSET Remote System Buffer Overrun (#NISR16022003c)",
|
|
"refsource": "VULNWATCH",
|
|
"url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0075.html"
|
|
},
|
|
{
|
|
"name": "VU#743954",
|
|
"refsource": "CERT-VN",
|
|
"url": "http://www.kb.cert.org/vuls/id/743954"
|
|
},
|
|
{
|
|
"name": "6850",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/6850"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle TO_TIMESTAMP_TZ Remote System Buffer Overrun (#NISR16022003b)",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://marc.info/?l=bugtraq&m=104549743326864&w=2"
|
|
},
|
|
{
|
|
"name": "oracle-bfilename-directory-bo(11325)",
|
|
"refsource": "XF",
|
|
"url": "http://www.iss.net/security_center/static/11325.php"
|
|
},
|
|
{
|
|
"name": "VU#840666",
|
|
"refsource": "CERT-VN",
|
|
"url": "http://www.kb.cert.org/vuls/id/840666"
|
|
},
|
|
{
|
|
"name": "CA-2003-05",
|
|
"refsource": "CERT",
|
|
"url": "http://www.cert.org/advisories/CA-2003-05.html"
|
|
},
|
|
{
|
|
"name": "http://otn.oracle.com/deploy/security/pdf/2003alert50.pdf",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://otn.oracle.com/deploy/security/pdf/2003alert50.pdf"
|
|
},
|
|
{
|
|
"name": "N-046",
|
|
"refsource": "CIAC",
|
|
"url": "http://www.ciac.org/ciac/bulletins/n-046.shtml"
|
|
},
|
|
{
|
|
"name": "oracle-totimestamptz-bo(11327)",
|
|
"refsource": "XF",
|
|
"url": "http://www.iss.net/security_center/static/11327.php"
|
|
},
|
|
{
|
|
"name": "http://otn.oracle.com/deploy/security/pdf/2003alert49.pdf",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://otn.oracle.com/deploy/security/pdf/2003alert49.pdf"
|
|
},
|
|
{
|
|
"name": "http://www.nextgenss.com/advisories/ora-bfilebo.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://www.nextgenss.com/advisories/ora-bfilebo.txt"
|
|
},
|
|
{
|
|
"name": "6847",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/6847"
|
|
},
|
|
{
|
|
"name": "oracle-tzoffset-bo(11326)",
|
|
"refsource": "XF",
|
|
"url": "http://www.iss.net/security_center/static/11326.php"
|
|
},
|
|
{
|
|
"name": "http://www.nextgenss.com/advisories/ora-tzofstbo.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://www.nextgenss.com/advisories/ora-tzofstbo.txt"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle unauthenticated remote system compromise (#NISR16022003a)",
|
|
"refsource": "VULNWATCH",
|
|
"url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0073.html"
|
|
},
|
|
{
|
|
"name": "6848",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/6848"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle bfilename function buffer overflow vulnerability (#NISR16022003e)",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://marc.info/?l=bugtraq&m=104550346303295&w=2"
|
|
},
|
|
{
|
|
"name": "VU#663786",
|
|
"refsource": "CERT-VN",
|
|
"url": "http://www.kb.cert.org/vuls/id/663786"
|
|
},
|
|
{
|
|
"name": "20030217 Oracle TZ_OFFSET Remote System Buffer Overrun (#NISR16022003c)",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://marc.info/?l=bugtraq&m=104549782327321&w=2"
|
|
}
|
|
]
|
|
}
|
|
} |