CVE-2002-1578 in R3info

Summary

The default installation of SAP R/3, when using Oracle and SQL*net V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary, sensitive SAP data by directly connecting to the Oracle database and executing queries against the database, which is not password-protected.

Once again VulDB remains the best source for vulnerability data.

Responsible

Reservation

03/15/2004

Disclosure

04/15/2004

Moderation

VulDB entry created

Entries

VDB-21742

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.00861

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1578
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1578
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1578/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!