Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2002-0564
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.015
EPSS Ranking
80.5%
CVSS Severity
CVSS v2 Score
7.5
References
http://marc.info/?l=bugtraq&m=101301813117562&w=2
http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdf
http://www.cert.org/advisories/CA-2002-08.html
http://www.kb.cert.org/vuls/id/193523
http://www.nextgenss.com/papers/hpoas.pdf
http://marc.info/?l=bugtraq&m=101301813117562&w=2
http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdf
http://www.cert.org/advisories/CA-2002-08.html
http://www.kb.cert.org/vuls/id/193523
http://www.nextgenss.com/papers/hpoas.pdf
Products affected by CVE-2002-0564
Oracle
»
Application Server
»
Version:
1.0.2
cpe:2.3:a:oracle:application_server:1.0.2
Oracle
»
Application Server Web Cache
»
Version:
2.0.0.0
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0
Oracle
»
Application Server Web Cache
»
Version:
2.0.0.1
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1
Oracle
»
Application Server Web Cache
»
Version:
2.0.0.2
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.2
Oracle
»
Application Server Web Cache
»
Version:
2.0.0.3
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.3
Oracle
»
Oracle8i
»
Version:
8.1.7
cpe:2.3:a:oracle:oracle8i:8.1.7
Oracle
»
Oracle8i
»
Version:
8.1.7.1
cpe:2.3:a:oracle:oracle8i:8.1.7.1
Oracle
»
Oracle9i
»
Version:
9.0
cpe:2.3:a:oracle:oracle9i:9.0
Oracle
»
Oracle9i
»
Version:
9.0.1
cpe:2.3:a:oracle:oracle9i:9.0.1
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved