Vulnerabilities > CVE-2003-0727 - Unspecified vulnerability in Oracle Database Server

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
local
low complexity
oracle
exploit available
metasploit
NVD
Published: 2003-10-20
Updated: 2017-09-28

Summary

Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.

Vulnerable Configurations

Part Description Count
Application
Oracle
1

Exploit-Db

  • descriptionOracle 9i XDB HTTP PASS Overflow (win32). CVE-2003-0727. Remote exploit for win32 platform
    idEDB-ID:16809
    last seen2016-02-02
    modified2010-09-20
    published2010-09-20
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16809/
    titleOracle 9i XDB HTTP PASS Overflow Win32
  • descriptionOracle 9i XDB 9.2.0.1 - HTTP PASS Buffer Overflow. CVE-2003-0727. Remote exploit for Windows platform
    fileexploits/windows/remote/42780.py
    idEDB-ID:42780
    last seen2017-09-26
    modified2017-09-25
    platformwindows
    port
    published2017-09-25
    reporterExploit-DB
    sourcehttps://www.exploit-db.com/download/42780/
    titleOracle 9i XDB 9.2.0.1 - HTTP PASS Buffer Overflow
    typeremote
  • descriptionOracle XDB FTP Service UNLOCK Buffer Overflow Exploit. CVE-2003-0727. Remote exploit for windows platform
    idEDB-ID:80
    last seen2016-01-31
    modified2003-08-13
    published2003-08-13
    reporterDavid Litchfield
    sourcehttps://www.exploit-db.com/download/80/
    titleOracle XDB FTP Service - UNLOCK Buffer Overflow Exploit
  • descriptionOracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit. CVE-2003-0727. Remote exploit for windows platform
    idEDB-ID:1365
    last seen2016-01-31
    modified2005-12-08
    published2005-12-08
    reportery0
    sourcehttps://www.exploit-db.com/download/1365/
    titleOracle 9.2.0.1 - Universal XDB HTTP Pass Overflow Exploit
  • descriptionOracle 9i XDB FTP PASS Overflow (win32). CVE-2003-0727. Remote exploit for win32 platform
    idEDB-ID:16731
    last seen2016-02-02
    modified2010-04-30
    published2010-04-30
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16731/
    titleOracle 9i XDB FTP PASS Overflow Win32
  • descriptionOracle 9i XDB FTP UNLOCK Overflow (win32). CVE-2003-0727. Remote exploit for windows platform
    idEDB-ID:16714
    last seen2016-02-02
    modified2010-10-05
    published2010-10-05
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/16714/
    titleOracle 9i XDB FTP UNLOCK Overflow Win32

Metasploit

Packetstorm

Saint

  • bid8375
    descriptionOracle 9i Release 2 XDB FTP Pass Overflow
    iddatabase_oracle_xdb
    osvdb2449
    titleoracle_xdb_ftp_pass_overflow
    typeremote
  • bid8375
    descriptionOracle 9i Release 2 XDB HTTP Pass Overflow
    iddatabase_oracle_xdb
    osvdb2449
    titleoracle_xdb_http_pass_overflow
    typeremote

References