cpe:/a:oracle:database_server:8.0.6 cpe:/a:oracle:database_server:9.2.1 cpe:/a:oracle:database_server:9.2.2 cpe:/a:oracle:oracle8i:8.1.7 cpe:/a:oracle:oracle8i:8.1.7.1 cpe:/a:oracle:oracle9i:9.0 cpe:/a:oracle:oracle9i:9.0.1 cpe:/a:oracle:oracle9i:9.0.1.2 cpe:/a:oracle:oracle9i:9.0.1.3 cpe:/a:oracle:oracle9i:9.0.2 CVE-2003-0095 2003-03-03T00:00:00.000-05:00 2016-10-17T22:29:25.943-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2004-01-01T00:00:00.000-05:00 ALLOWS_ADMIN_ACCESS BUGTRAQ 20030217 Oracle unauthenticated remote system compromise (#NISR16022003a) OSVDB 6319 BID 6849 CERT CA-2003-05 CIAC N-046 CERT-VN VU#953746 CONFIRM http://otn.oracle.com/deploy/security/pdf/2003alert51.pdf XF oracle-username-bo(11328) Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demonstrated using LOADPSP.