Intrusion Prevention

Oracle.SYS.OLAPIMPL.T.ODCITABLESTART.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in Oracle Database Server.
The vulnerability is caused by an error when the affected software handles a specially crafted SQL statement. It allows a remote attacker to inject arbitrary code.

Affected Products

Oracle Database 9i Release 2 version 9.2.0.8
Oracle Database 9i Release 2 version 9.2.0.8DV

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply patch, available from the website:
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html.

CVE References

CVE-2008-3974