CVE-2004-0637

Currently unrated

Key Information:

Vendor: Oracle
Status: Oracle8i; Oracle9i
Vendor: CVE Published:; 2 September 2004

Summary

Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.

References

http://www.securityfocus.com/bid/11099

vdb-entryx_refsource_BID

http://www.idefense.com/application/poi/display?id=136&ty...

third-party-advisoryx_refsource_IDEFENSE

http://www.kb.cert.org/vuls/id/316206

third-party-advisoryx_refsource_CERT-VN

EPSS Score

90% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 2, 2004
Vulnerability Reserved
Jul 7, 2004