Signature Detail

DB: Oracle Create Database Link Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Oracle Database Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted application.

Extended Description

It is reported that Oracle Database 10g and Oracle9i Database Server products contain multiple unspecified vulnerabilities. The reported vulnerabilities include SQL injection vulnerabilities and a buffer overflow issue. It is reported that the issues may be exploited by unprivileged users to gain DBA privileges or to execute arbitrary attacker-supplied code in the context of the affected database service. NGSSoftware has stated that further details will be released on 18th of April 2005 regarding the issues that are described in this BID. Please see the referenced message for more information.

Affected Products

• Oracle oracle10g_application_server 10.1.0 .0.2
• Oracle oracle10g_application_server 9.0.4 .0
• Oracle oracle10g_enterprise_edition 10.1.0 .0.2
• Oracle oracle10g_enterprise_edition 9.0.4 .0
• Oracle oracle10g_personal_edition 10.1.0 .0.2
• Oracle oracle10g_personal_edition 9.0.4 .0
• Oracle oracle10g_standard_edition 10.1.0 .0.2
• Oracle oracle10g_standard_edition 9.0.4 .0
• Oracle oracle9i_application_server 1.0.2
• Oracle oracle9i_application_server 1.0.2 .1s
• Oracle oracle9i_application_server 1.0.2 .2
• Oracle oracle9i_application_server 1.0.2 .2.2
• Oracle oracle9i_application_server 9.0.2
• Oracle oracle9i_application_server 9.0.2 .0.0
• Oracle oracle9i_application_server 9.0.2 .0.1
• Oracle oracle9i_application_server 9.0.2 .1
• Oracle oracle9i_application_server 9.0.2 .2
• Oracle oracle9i_application_server 9.0.2 .3
• Oracle oracle9i_application_server 9.0.3
• Oracle oracle9i_application_server 9.0.3 .1
• Oracle oracle9i_application_server
• Oracle oracle9i_client_edition 9.2.0 .0.1
• Oracle oracle9i_client_edition 9.2.0 .0.2
• Oracle oracle9i_developer_edition 9.0.4
• Oracle oracle9i_enterprise_edition 8.1.7
• Oracle oracle9i_enterprise_edition 9.0.0 .2.4
• Oracle oracle9i_enterprise_edition 9.0.1
• Oracle oracle9i_enterprise_edition 9.0.1 .4
• Oracle oracle9i_enterprise_edition 9.0.1 .5
• Oracle oracle9i_enterprise_edition 9.2.0 .0
• Oracle oracle9i_enterprise_edition 9.2.0 .0.1
• Oracle oracle9i_enterprise_edition 9.2.0 .0.3
• Oracle oracle9i_enterprise_edition 9.2.0 .0.5
• Oracle oracle9i_enterprise_edition 9.2.0.2
• Oracle oracle9i_lite 5.0.0 .0.0.0
• Oracle oracle9i_lite 5.0.0 .1.0.0
• Oracle oracle9i_lite 5.0.0 .2.0.0
• Oracle oracle9i_lite 5.0.0 .2.9.0
• Oracle oracle9i_personal_edition 8.1.7
• Oracle oracle9i_personal_edition 9.0.0 .2.4
• Oracle oracle9i_personal_edition 9.0.1
• Oracle oracle9i_personal_edition 9.0.1 .4
• Oracle oracle9i_personal_edition 9.0.1 .5
• Oracle oracle9i_personal_edition 9.2.0
• Oracle oracle9i_personal_edition 9.2.0 .0.1
• Oracle oracle9i_personal_edition 9.2.0 .0.2
• Oracle oracle9i_personal_edition 9.2.0 .0.3
• Oracle oracle9i_personal_edition 9.2.0 .0.5
• Oracle oracle9i_standard_edition 8.1.7
• Oracle oracle9i_standard_edition 9.0.0
• Oracle oracle9i_standard_edition 9.0.0 .2.4
• Oracle oracle9i_standard_edition 9.0.1
• Oracle oracle9i_standard_edition 9.0.1 .2
• Oracle oracle9i_standard_edition 9.0.1 .3
• Oracle oracle9i_standard_edition 9.0.1 .4
• Oracle oracle9i_standard_edition 9.0.1 .5
• Oracle oracle9i_standard_edition 9.0.2
• Oracle oracle9i_standard_edition 9.2.0
• Oracle oracle9i_standard_edition 9.2.0 .0.1
• Oracle oracle9i_standard_edition 9.2.0 .0.2
• Oracle oracle9i_standard_edition 9.2.0 .0.3
• Oracle oracle9i_standard_edition 9.2.0 .0.5
• Oracle oracle9i_standard_edition 9.2.0 .3

References

• BugTraq: 12296
• CVE: CVE-2003-0222
• CVE: CVE-2005-0297