Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability - CVE-2004-1363
Reference:
CVE-2004-1363
Title:
Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability
Overview:
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name which are expanded after the length check is performed.