Signature Detail

DB: Oracle Database CTXSYS.DRVDISP.TABLEFUNC_ASOWN Buffer Overflow

A buffer overflow vulnerability exists in Oracle's Database server. The vulnerability is due to the way in which parameters are handled by the TABLEFUNC_ASOWN function in the CTXSYS.DRVDISP package. A remote, authenticated attacker could exploit this vulnerability to execute arbitrary code on the target server, in the security context of the Oracle Database service, normally SYSTEM on Windows platforms and an unprivileged user on Unix platforms.

Extended Description

Oracle Database is prone to a buffer-overflow vulnerability that exists in Oracle Text. The vulnerability can be exploited over the 'Oracle Net' protocol. For an exploit to succeed, the attacker must have 'Execute on CTXSYS.DRVDISP' privileges. Successful exploits will allow attackers to execute arbitrary code in the context of the affected application. This may facilitate a complete system compromise. This vulnerability affects the following supported versions: 10.1.0.5, 10.2.0.3, 10.2.0.4, 11.1.0.7ww

Affected Products

• Oracle Oracle10g Enterprise Edition 10.2.0 .3
• Oracle Oracle10g Enterprise Edition 11.1.0.7
• Oracle Oracle10g Personal Edition 10.1.0.5
• Oracle Oracle10g Personal Edition 10.1.0.5 R1
• Oracle Oracle10g Personal Edition 10.2.0.3 R2
• Oracle Oracle10g Personal Edition 10.2.0.4
• Oracle Oracle10g Standard Edition 10.2.0 .3
• Oracle Oracle11g Enterprise Edition 11.1.0.7
• Oracle Oracle11g Enterprise Edition 11.1.0.7 R1
• Oracle Oracle11g Standard Edition 11.1.0.7
• Oracle Oracle11g Standard Edition 11.1.0.7 R1

References

• BugTraq: 50199
• CVE: CVE-2011-2301