Multiple Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerabilities

Multiple Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerabilities

In a paper titled "Variations in exploit methods between Linux and Windows" presented at Blackhat 2003, David Litchfield has illustrated multiple vulnerabilities in the Oracle 9i XML Database (XDB).

Successful exploits may allow remote attackers to run arbitrary code in the security context of the vulnerable service.