CVE-2002-0965 – Oracle 8i - TNS Listener SERVICE_NAME Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0965
Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file. • https://www.exploit-db.com/exploits/16341 http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0096.html http://online.securityfocus.com/archive/1/276526 http://otn.oracle.com/deploy/security/pdf/net9_dos_alert.pdf http://www.iss.net/security_center/static/9288.php http://www.kb.cert.org/vuls/id/630091 http://www.securityfocus.com/bid/4845 •
CVE-2002-0856
https://notcve.org/view.php?id=CVE-2002-0856
SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote attackers to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature. El servidor SQL*NET para Oracle 9i 9.0.x y 9.2 permite a atacantes remotos causar una denegación de sevicio (caída) mediante ciertas peticiones de depuración que no son adecuadamente manejadas por la característica de depuración • http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0072.html http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20941 http://otn.oracle.com/deploy/security/pdf/2002alert38rev1.pdf http://www.iss.net/security_center/static/9237.php http://www.securityfocus.com/bid/5457 •