Buffer Overflow in SDO_CODE_SIZE Procedure of MD2 Package in Oracle 10g

Buffer Overflow in SDO_CODE_SIZE Procedure of MD2 Package in Oracle 10g

CVE-2004-1774 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g before 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.

Learn more about our User Device Pen Test.