CVE-2002-0562 in Oracle9iinformazioni

Riassunto

di MITRE

The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

03/07/2002

Moderazione

accettato

Voce

VDB-18382

CPE

pronto

CWE

CWE-200 (confermato)

CVSS

5.0 (NVD)

EPSS

0.07035

KEV

Attività

molto basso

Settore

Hospital, Insurance, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0562
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0562
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0562/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!