Описание
The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and modify DAD settings.
The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and modify DAD settings.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-0561
- http://marc.info/?l=bugtraq&m=101301813117562&w=2
- http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdf
- http://www.cert.org/advisories/CA-2002-08.html
- http://www.kb.cert.org/vuls/id/611776
- http://www.nextgenss.com/papers/hpoas.pdf
- http://www.securityfocus.com/bid/4292
EPSS
Процентиль: 91%
0.06961
Низкий
CVE ID
Связанные уязвимости
nvd
около 23 лет назад
The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and modify DAD settings.
EPSS
Процентиль: 91%
0.06961
Низкий