|
Family: Databases --> Category: destructive_attack
Oracle 9iAS mod_plsql Buffer Overflow Vulnerability Scan
Vulnerability Scan Summary Oracle 9iAS mod_plsql Overflow
Detailed Explanation for this Vulnerability Test
Oracle 9i Application Server uses Apache as it's web
server. There is a buffer overflow in the mod_plsql module
which allows a possible hacker to run arbitrary code.
Solution:
Oracle have released a patch for this vulnerability, which
is available from:
http://metalink.oracle.com
References:
http://www.nextgenss.com/advisories/plsql.txt
http://otn.oracle.com/deploy/security/pdf/modplsql.pdf
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|