Lucene search
HistoryNov 03, 2003 - 5:00 a.m.
CVE-2003-1193
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.7%
Multiple SQL injection vulnerabilities in the Portal DB (1) List of Values (LOVs), (2) Forms, (3) Hierarchy, and (4) XML components packages in Oracle Oracle9i Application Server 9.0.2.00 through 3.0.9.8.5 allow remote attackers to execute arbitrary SQL commands via the URL.
Affected configurations
Node
oracleapplication_server_portalMatch3.0.9.8.5
ORoracleapplication_server_portalMatch9.0.2.3
ORoracleapplication_server_portalMatch9.0.2.3a
ORoracleapplication_server_portalMatch9.0.2.3b
ORoracleoracle9iMatch9.0.2
ORoracleoracle9iMatch9.0.2.0.0
ORoracleoracle9iMatch9.0.2.0.1
ORoracleoracle9iMatch9.0.2.1
ORoracleoracle9iMatch9.0.2.2
ORoracleoracle9iMatch9.0.2.3
Related
openvas
openvas
Oracle 9iAS PORTAL_DEMO ORG_CHART
2005-11-03 00:00:00
Oracle 9iAS PORTAL_DEMO ORG_CHART
2005-11-03 00:00:00
cve
cve
CVE-2003-1193
2005-05-10 04:00:00
nessus
nessus
Oracle PORTAL_DEMO.ORG_CHART SQL Injection
2003-11-09 00:00:00
cvelist
cvelist
CVE-2003-1193
2005-05-10 04:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.7%
Related for NVD:CVE-2003-1193