Vulnerabilities > CVE-2001-0499 - Buffer Overflow vulnerability in Oracle 8i TNS Listener

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
oracle
critical
exploit available
metasploit
NVD
Published: 2001-07-21
Updated: 2017-07-11

Summary

Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD.

Vulnerable Configurations

Part Description Count
Application
Oracle
1

Exploit-Db

  • descriptionOracle 8i TNS Listener (ARGUMENTS) Buffer Overflow. CVE-2001-0499. Remote exploit for windows platform
    idEDB-ID:16340
    last seen2016-02-01
    modified2010-11-24
    published2010-11-24
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16340/
    titleOracle 8i TNS Listener ARGUMENTS Buffer Overflow
  • descriptionOracle 8i TNS Listener Buffer Overflow Vulnerability. CVE-2001-0499. Remote exploit for windows platform
    idEDB-ID:20980
    last seen2016-02-02
    modified2001-07-20
    published2001-07-20
    reporterbenjurry
    sourcehttps://www.exploit-db.com/download/20980/
    titleOracle 8i TNS Listener Buffer Overflow Vulnerability

Metasploit

descriptionThis module exploits a stack buffer overflow in Oracle 8i. When sending a specially crafted packet containing an overly long ARGUMENTS string to the TNS service, an attacker may be able to execute arbitrary code.
idMSF:EXPLOIT/WINDOWS/ORACLE/TNS_ARGUMENTS
last seen2020-05-22
modified2017-09-14
published2009-07-13
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0499
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/oracle/tns_arguments.rb
titleOracle 8i TNS Listener (ARGUMENTS) Buffer Overflow

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/83067/tns_arguments.rb.txt
idPACKETSTORM:83067
last seen2016-12-05
published2009-11-26
reporterMC
sourcehttps://packetstormsecurity.com/files/83067/Oracle-8i-TNS-Listener-ARGUMENTS-Buffer-Overflow..html
titleOracle 8i TNS Listener (ARGUMENTS) Buffer Overflow.

References