CVE-2009-1963

Oracle Database 11.1.0.6 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1963. PoCs published by Dennis Yurichev.

AI-analyzed exploit summary The provided text describes a remote heap memory-corruption vulnerability in Oracle Database's Network Foundation, exploitable via the Oracle Net protocol without authentication. Successful exploitation could lead to arbitrary code execution or denial-of-service.

Description

Unspecified vulnerability in the Network Foundation component in Oracle Database 11.1.0.6 allows remote authenticated users to affect integrity and availability via unknown vectors.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Dennis Yurichev · textdosmultiple
https://www.exploit-db.com/exploits/33080

The provided text describes a remote heap memory-corruption vulnerability in Oracle Database's Network Foundation, exploitable via the Oracle Net protocol without authentication. Successful exploitation could lead to arbitrary code execution or denial-of-service.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Oracle Database (Network Foundation)
No auth needed
Prerequisites: Network access to Oracle Net protocol
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/55885
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35776
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51751
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1900
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1022560
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/35677

Scores

EPSS 0.0873
EPSS Percentile 94.5%

Details

Status published
Products (1)
oracle/database_server 11.1.0.6
Published Jul 14, 2009
Tracked Since Feb 18, 2026