CVE-2005-0701

Oracle Database Server 8i and 9i - Directory Traversal via UTL_FILE Functions

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0701. PoCs published by Cesar Cerrudo.

AI-analyzed exploit summary This exploit demonstrates directory traversal vulnerabilities in Oracle Database server via the UTL_FILE package, allowing arbitrary file read, write, and rename operations with the privileges of the Oracle Database server. The PoC includes SQL queries that traverse outside the intended directory using relative path manipulation.

Description

Directory traversal vulnerability in Oracle Database Server 8i and 9i allows remote attackers to read or rename arbitrary files via "\\.\\.." (modified dot dot backslash) sequences to UTL_FILE functions such as (1) UTL_FILE.FOPEN or (2) UTL_FILE.frename.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Cesar Cerrudo · textremotewindows
https://www.exploit-db.com/exploits/25195

This exploit demonstrates directory traversal vulnerabilities in Oracle Database server via the UTL_FILE package, allowing arbitrary file read, write, and rename operations with the privileges of the Oracle Database server. The PoC includes SQL queries that traverse outside the intended directory using relative path manipulation.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Oracle Database Server (versions affected by CVE-2005-0701)
Auth required
Prerequisites: Access to execute PL/SQL code on the Oracle Database server · Valid directory object (e.g., MEDIA_DIR) configured in the database
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Patch, Vendor Advisory mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032273.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111023635928211&w=2
Exploit, Patch, Vendor Advisory x_refsource_misc
http://www.argeniss.com/research/ARGENISS-ADV-030501.txt

Scores

EPSS 0.1815
EPSS Percentile 96.8%

Details

Status published
Products (1)
oracle/database_server
Published Mar 07, 2005
Tracked Since Feb 18, 2026