Description
Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote attackers to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora configuration file.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2006-0287 Vulnerability (CVE-2006-0287)
Oracle JRE CVE-2023-22006 Vulnerability (CVE-2023-22006)
Envoy Proxy Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27492)
WordPress Plugin Custom Search by BestWebSoft Unspecified Vulnerability (1.21)