Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability - CVE-2004-1363 - Vulnerability Database

Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability - CVE-2004-1363

Critical
Reference: CVE-2004-1363
Title: Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability
Overview:

Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name which are expanded after the length check is performed.