CVE-2002-0563 in Application Serverinformazioni

Riassunto

di MITRE

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

03/07/2002

Moderazione

accettato

Voce

Collegare

mostrare

CPE

pronto

CWE

CWE-287 (confermato)

CVSS

5.0 (NVD)

EPSS

0.51129

KEV

Attività

molto basso

Settore

Insurance, Hospital, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0563
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0563
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0563/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to know what is going to be exploited?

We predict KEV entries!