Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
Loading...
Loading...
Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
October 20, 2003
April 16, 2026
Every time one of our enrichment pipelines (NVD, MITRE cvelistV5, EPSS, CISA KEV, GHSA, OSV, vendor advisories) ran against this CVE. Most recent first.
Working exploit code is in the public domain (3 Metasploit modules) (6 Exploit-DB entries). Defenders should treat patch urgency accordingly — public PoCs typically lead to mass-exploitation within 24-72 hours.
Oracle 9i XDB 9.2.0.1 - HTTP PASS Buffer Overflow
Open source ↗Oracle 9i XDB (Windows x86) - FTP UNLOCK Overflow (Metasploit)
Open source ↗Oracle 9i XDB (Windows x86) - HTTP PASS Overflow (Metasploit)
Open source ↗Oracle 9i XDB (Windows x86) - FTP PASS Overflow (Metasploit)
Open source ↗Oracle 9.2.0.1 - Universal XDB HTTP Pass Overflow (Metasploit)
Open source ↗Oracle 9i XDB HTTP PASS Overflow (win32)
Open source ↗Oracle 9i XDB FTP UNLOCK Overflow (win32)
Open source ↗Oracle 9i XDB FTP PASS Overflow (win32)
Open source ↗Oracle XDB FTP Service - UNLOCK Buffer Overflow
Open source ↗See which npm, PyPI, Go, and Maven packages are affected by CVE-2003-0727
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.