CVE-2002-0563 in Application Serverinfo

Zusammenfassung

von MITRE

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Veröffentlichung

03.07.2002

Moderieren

akzeptiert

Eintrag

Verknüpfen

zeigen

CPE

bereit

CWE

CWE-287 (bestätigt)

CVSS

5.0 (NVD)

EPSS

0.51129

KEV

nein

Aktivitäten

very low

Sektor

Energy, Education, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0563
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0563
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0563/

◂ Zurück Übersicht Weiter ▸

Do you know our Splunk app?

Download it now for free!