← CVECheck
HomeVulnerabilities

CVE-2003-0096 — HIGH severity vulnerability (Multiple buffer overflows in Oracle 9i Database release 2, R)

Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENA

CVE IDCVE-2003-0096
SeverityHIGH
CVSS score9.0
CVSS vectorAV:N/AC:L/Au:S/C:C/I:C/A:C
CWECWE-119
StatusModified
Published2003-03-03
Last modified2026-04-16
DescriptionMultiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →