Oracle Database Server (http://www.oracle.com/database/index.html) is "a family of database products that range from personal databases to enterprise solutions". Remote exploitation of a buffer overflow vulnerability in the DBMS_AQELM package in Oracle Corp.'s Oracle Database product allows attackers to execute arbitrary code with the privileges of the database user.

http://www.securiteam.com/securitynews/5QP0C20OUU.html