Description
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function.
Remediation
References
Related Vulnerabilities
WordPress Plugin Team Members Unspecified Vulnerability (2.1.2)
WordPress Plugin MAZ Loader-Preloader Builder for WordPress SQL Injection (1.3.2)
Oracle JRE CVE-2013-2431 Vulnerability (CVE-2013-2431)
WordPress Plugin FormBuilder Multiple Vulnerabilities (1.05)
WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass (2.6.70)