Vulnerability Details CVE-2002-0856
SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote attackers to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0072.html
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20941
- http://otn.oracle.com/deploy/security/pdf/2002alert38rev1.pdf
- http://www.iss.net/security_center/static/9237.php
- http://www.securityfocus.com/bid/5457
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0072.html
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20941
- http://otn.oracle.com/deploy/security/pdf/2002alert38rev1.pdf
- http://www.iss.net/security_center/static/9237.php
- http://www.securityfocus.com/bid/5457
Products affected by CVE-2002-0856
-
cpe:2.3:a:oracle:database_server:9.2.1
-
cpe:2.3:a:oracle:oracle9i:9.0
-
cpe:2.3:a:oracle:oracle9i:9.0.1
-
cpe:2.3:a:oracle:oracle9i:9.0.1.2
-
cpe:2.3:a:oracle:oracle9i:9.0.1.3
-
cpe:2.3:a:oracle:oracle9i:9.0.2