CVE-2002-0563 in Application Serverالمعلومات

الملخص

بحسب MITRE

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

03/07/2002

الاعتدال

تمت الموافقة

إدخال

ربط

عرض

CPE

جاهز

CWE

CWE-287 (مؤكد)

CVSS

5.0 (NVD)

EPSS

0.51129

KEV

لا

النشاطات

منخفض جدًا

القطاع

Government, Chemical, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0563
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0563
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0563/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!