CVE-2009-0991

Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7 - Denial of Service in Listener Component

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0991. PoCs published by Dennis Yurichev.

AI-analyzed exploit summary This exploit targets a vulnerability in Oracle RDBMS TNS Listener (CVE-2009-0991) by sending malformed packets to cause a trap in the Listener process. It specifically exploits a flaw in the memcpy() function within ncrfintn() in oranro11.dll.

Description

Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-1970.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dennis Yurichev · pythondoswindows

https://www.exploit-db.com/exploits/8507

View Code ZIP pw:eip

This exploit targets a vulnerability in Oracle RDBMS TNS Listener (CVE-2009-0991) by sending malformed packets to cause a trap in the Listener process. It specifically exploits a flaw in the memcpy() function within ncrfintn() in oranro11.dll.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Oracle RDBMS Win32 11.1.0.6.0 and 10.2.0.3

No auth needed

Prerequisites: Network access to the target Oracle TNS Listener on port 1521

MITRE ATT&CK