← volver
CVE-2004-1368

CVE-2004-1368

EPSS 5.6%
ISQL*Plus in Oracle 10g Application Server allows remote attackers to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://marc.info/?l=bugtraq&m=110382264415387&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18656http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1http://www.kb.cert.org/vuls/id/435974http://www.ngssoftware.com/advisories/oracle23122004E.txthttp://www.securityfocus.com/bid/10871http://www.us-cert.gov/cas/techalerts/TA04-245A.html