严重程度:中威胁程度:权限提升错误类型:边界检查错误利用方式:服务器模式 BUGTRAQ ID:8845 受影响系统Oracle Oracle9i Enterprise Edition 9.0.1Oracle Oracle9i Enterprise Edition 9.2 .0.4Oracle Oracle9i Personal Edition 9.0.1Oracle Oracle9i Personal Edition 9.2 .0.4Oracle Oracle9i Standard Edition 9.0Oracle Oracle9i Standard Edition 9.0.1 .4Oracle Oracle9i Standard Edition 9.0.1 .3Oracle Oracle9i Standard Edition 9.0.1 .2Oracle Oracle9i Standard Edition 9.0.1Oracle Oracle9i Standard Edition 9.0.2Oracle Oracle9i Standard Edition 9.2 .0.4详细描述Oracle Database Server 'oracleO'程序存在本地缓冲区溢出。 在传递命令行参数给'oracleO'程序时缺少充分的边界缓冲区检查,可导致以'oracle'进程权限在系统上执行任意代码。 解决方案chmod o-x oracleO 或者补丁下载: http://metalink.oracle.com/ 相关信息c0ntex <c0ntex@hushmail.com>. 参考PDF/2003alert59.pdf" target=_blank>http://otn.oracle.com/deploy/security/pdf/2003alert59.pdfhttp://metalink.oracle.com/
BUGTRAQ ID:8845
受影响系统Oracle Oracle9i Enterprise Edition 9.0.1Oracle Oracle9i Enterprise Edition 9.2 .0.4Oracle Oracle9i Personal Edition 9.0.1Oracle Oracle9i Personal Edition 9.2 .0.4Oracle Oracle9i Standard Edition 9.0Oracle Oracle9i Standard Edition 9.0.1 .4Oracle Oracle9i Standard Edition 9.0.1 .3Oracle Oracle9i Standard Edition 9.0.1 .2Oracle Oracle9i Standard Edition 9.0.1Oracle Oracle9i Standard Edition 9.0.2Oracle Oracle9i Standard Edition 9.2 .0.4详细描述Oracle Database Server 'oracleO'程序存在本地缓冲区溢出。
在传递命令行参数给'oracleO'程序时缺少充分的边界缓冲区检查,可导致以'oracle'进程权限在系统上执行任意代码。
解决方案chmod o-x oracleO
或者补丁下载:
http://metalink.oracle.com/
相关信息c0ntex <c0ntex@hushmail.com>. 参考PDF/2003alert59.pdf" target=_blank>http://otn.oracle.com/deploy/security/pdf/2003alert59.pdfhttp://metalink.oracle.com/
