SMB: Malformed JPEG Download

This signature detects SMB clients downloading a malformed JPEG file. This malformed file can potentially cause vulnerable versions of Internet Explorer, or Explorer to execute arbitrary code.

Extended Description

It is reported that Oracle Database 10g and Oracle9i Database Server products contain multiple unspecified vulnerabilities. The reported vulnerabilities include SQL injection vulnerabilities and a buffer overflow issue. It is reported that the issues may be exploited by unprivileged users to gain DBA privileges or to execute arbitrary attacker-supplied code in the context of the affected database service. NGSSoftware has stated that further details will be released on 18th of April 2005 regarding the issues that are described in this BID. Please see the referenced message for more information.

Affected Products

Oracle oracle9i_lite

References

CVE: CVE-2004-0200

URL: http://www.microsoft.com/technet/security/bulletin/MS04-028.mspx http://www.us-cert.gov/cas/techalerts/TA04-260A.html

Short Name

SMB:EXPLOIT:MAL-JPEG-DL

Severity

Major

Recommended

False

Recommended Action

Drop

SMB: Malformed JPEG Download

Extended Description

Affected Products

References

Found a potential security threat?