CVE-2002-0563 in Application Server情報

要約

〜によって MITRE

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

公開

2002年07月03日

モデレーション

承諾済み

エントリ

リンクする

表示

CPE

準備完了

CWE

CWE-287 (確認済み)

CVSS

5.0 (NVD)

EPSS

0.51129

KEV

いいえ

アクティビティ

非常低い

セクター

Telecommunication, Energy, ...

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0563
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0563
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0563/

◂ 前概要次 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!