Lucene search

[email protected]NVD:CVE-2000-1235

HistoryDec 31, 2000 - 5:00 a.m.

CVE-2000-1235

2000-12-3105:00:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.3%

JSON

The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files.

Affected configurations

NVD

Node

oracleapplication_serverRange≤3.0.7

References

archives.neohapsis.com/archives/bugtraq/2000-12/0339.html

archives.neohapsis.com/archives/bugtraq/2000-12/0372.html

archives.neohapsis.com/archives/bugtraq/2000-12/0463.html

online.securityfocus.com/archive/1/155881

www.iss.net/security_center/static/5818.php

www.securityfocus.com/bid/2150

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.3%

JSON

Related for NVD:CVE-2000-1235

cve1 nessus2 cvelist1