Unrated severityNVD Advisory· Published Sep 2, 2004· Updated Apr 16, 2026

CVE-2004-0637

Description

Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.

Affected products

Oracle Corporation/Oracle8i2 versions
cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7_.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7_.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle8i:standard_8.1.7_.4:*:*:*:*:*:*:*
Oracle Corporation/Oracle9i4 versions
cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.4:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:personal_9.2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:standard_9.0.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:standard_9.2.0.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/12409/nvdPatchVendor Advisory
www.idefense.com/application/poi/displaynvdPatchVendor Advisory
www.kb.cert.org/vuls/id/316206nvdPatchThird Party AdvisoryUS Government Resource
www.securityfocus.com/bid/11099nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.015
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000