CVE-2003-0096 — HIGH severity vulnerability (Multiple buffer overflows in Oracle 9i Database release 2, R)
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENA
| CVE ID | CVE-2003-0096 |
|---|---|
| Severity | HIGH |
| CVSS score | 9.0 |
| CVSS vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
| CWE | CWE-119 |
| Status | Modified |
| Published | 2003-03-03 |
| Last modified | 2026-04-16 |
| Description | Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →