Intrusion Prevention

Oracle.sys.pbsde.init.Buffer.Overflow

Description

This indicates a possible attempt to exploit one of several buffer overflow and PL/SQL injection vulnerabilities in Oracle Database 10g and Oracle9i Database Server.
The vulnerabilities may allow remote attackers to execute arbitrary code or run arbitrary sql commands on a vulnerable server.

Affected Products

Oracle Database Server
Oracle Enterprise Manager
Oracle Application Server
Oracle Collaboration Suite
Oracle E-Business Suite and Applications
Oracle PeopleSoft Enterprise
JD Edwards EnterpriseOne

Impact

System compromise: remote code execution, SQL injection.

Recommended Actions

Please refer to the following website to get the patch or update: http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=333956.1