Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g before 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.
Max CVSS
7.2
EPSS Score
97.29%
Published
2004-08-31
Updated
2017-07-11
Stack-based buffer overflow in Oracle 9i and 10g allows remote attackers to execute arbitrary code via a long token in the text of a wrapped procedure.
Max CVSS
9.0
EPSS Score
75.25%
Published
2004-08-04
Updated
2017-07-11
2 vulnerabilities found