Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2015/05/18 12:0 a.m.7 views

Oracle 9i HTTP Server mod_plsql Directory Traversal - Ver2 (CVE-2001-1217)

A directory traversal vulnerability has been reported in Oracle Application Server. An attacker could exploit this vulnerability via a double encoded URL with "..". Successful exploitation of this vulnerability would allow a remote attacker to list directories on the affected system...

5CVSS6.1AI score0.54383EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.28 views

Oracle 9i Application Server mod_plsql Directory Traversal Vulnerability - Active Check

In a default installation of Oracle 9i Application Server AS, it is possible to use the modplsql module to perform a directory traversal attack. SPDX-FileCopyrightText: 2002 Matt Moore Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

5CVSS5.3AI score0.54383EPSS
Exploits0References3
CVE
CVE
added 2002/03/15 5:0 a.m.63 views

CVE-2001-1217

CVE-2001-1217 describes a directory traversal vulnerability in the PL/SQL Apache module (mod_plsql/mod_plsql) of Oracle 9i Application Server. The issue allows remote attackers to read sensitive files outside the web server’s root by crafting a request with double URL encoded sequences (..). Affe...

5CVSS8.7AI score0.54383EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2002/02/07 12:0 a.m.51 views

Oracle 9iAS mod_plsql Encoded Traversal Arbitrary File Access

In a default installation of Oracle 9iAS, it is possible to use the modplsql module to perform a directory traversal attack. This allows attackers to read arbitrary files on the server. %NASLMINLEVEL 70300 This script was written by Matt Moore See the Nessus Scripts License for details Changes by...

5CVSS5.7AI score0.54383EPSS
Exploits0References4
NVD
NVD
added 2001/12/21 5:0 a.m.26 views

CVE-2001-1217

Directory traversal vulnerability in PL/SQL Apache module in Oracle Oracle 9i Application Server allows remote attackers to access sensitive information via a double encoded URL with .. dot dot sequences...

5CVSS5.7AI score0.54383EPSS
Exploits0References5
Rows per page
Query Builder