CVE-2004-1774 in Oracle10ginfo

Summary

Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g before 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

04/19/2005

Disclosure

08/31/2004

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119

Exploit

Download

CVSS

9.3

EPSS

0.07660

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1774
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1774
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1774/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!