Oracle Database Server EXTPROC Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Oracle Database Server EXTPROC Buffer Overflow Vulnerability

The EXTPROC executable used by the Oracle Database Server is prone to a buffer overflow. Successful exploitation could result in arbitrary code execution with potentially elevated privileges.

** This issue is reportedly related to BID 4033. A reliable source has indicated that Oracle patches for the issue described in BID 4033 introduce this issue. Symantec has not been able to confirm this information.