← CVECheck
HomeVulnerabilities

CVE-2004-1363 — CRITICAL severity vulnerability (Buffer overflow in extproc in Oracle 10g allows remote attac)

Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.

CVE IDCVE-2004-1363
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-131
StatusModified
Published2004-08-04
Last modified2026-04-16
DescriptionBuffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →