Oracle : Security Vulnerabilities, CVEs, Published In 2002 (Overflow) CVSS score >= 2

CVE-2002-1767

Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument.
Max CVSS
7.2
EPSS Score
0.08%
Published
2002-12-31
Updated
2017-07-11

CVE-2002-1264

Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote attackers to execute arbitrary code via a long USERID parameter in the isqlplus URL.
Max CVSS
7.5
EPSS Score
49.01%
Published
2002-11-12
Updated
2016-10-18

CVE-2002-0969

Buffer overflow in MySQL daemon (mysqld) before 3.23.50, and 4.0 beta before 4.02, on the Win32 platform, allows local users to execute arbitrary code via a long "datadir" parameter in the my.ini initialization file, whose permissions on Windows allow Full Control to the Everyone group.
Max CVSS
7.8
EPSS Score
0.08%
Published
2002-10-11
Updated
2024-01-26

CVE-2002-0965

Public exploit
Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file.
Max CVSS
7.5
EPSS Score
95.01%
Published
2002-10-04
Updated
2008-09-05

CVE-2002-0947

Buffer overflow in rwcgi60 CGI program for Oracle Reports Server 6.0.8.18.0 and earlier, as used in Oracle9iAS and other products, allows remote attackers to execute arbitrary code via a long database name parameter.
Max CVSS
7.5
EPSS Score
7.69%
Published
2002-10-04
Updated
2008-09-05
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close