Lucene search
K

7 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Oracle 8.1.7 JSP/JSPSQL Remote File Reading Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2288/info A problem with Oracle on the Windows 2000 platform could allow users access to restricted information. This problem in the handling of input by the Oracle software may result in remote users being permitted read...

7.1AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.57 views

CVE-2001-0591

CVE-2001-0591 is a directory traversal vulnerability in Oracle JSP 1.0.x–1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 that allows remote attackers to read or execute arbitrary .jsp files via a '..' path traversal. The connected Nessus entry confirms the CVE is among Oracle Application Server vulnerab...

7.5CVSS9AI score0.04012EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2001/11/22 5:0 a.m.53 views

CVE-2001-0831

The CVE-2001-0831 issue concerns Oracle Label Security in Oracle 8.1.7 and 9.0.1. The vulnerability is triggered when audit functionality, SET_LABEL, or SQL*Predicate is used, enabling local users to gain additional access. This is a local privilege escalation vulnerability affecting the listed O...

4.6CVSS6.5AI score0.00562EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.68 views

CVE-2001-0326

The CVE-2001-0326 entry concerns Oracle Java Virtual Machine (JVM) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1. Description in connected sources indicates an information disclosure vulnerability: remote attackers could read arbitrary files via the .jsp and .sqljsp extens...

7.5CVSS9.2AI score0.05322EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2001/04/04 4:0 a.m.44 views

CVE-2001-0300

The CVE-2001-0300 issue pertains to the Oracle Internet Directory LDAP Daemon (oidldapd) version 2.1.1.1 included with Oracle 8i/8.1.7. The daemon writes logs to a directory (ldaplog) that has world‑writable permissions, enabling a local user to delete logs and, via a symlink attack, overwrite ot...

2.1CVSS5.9AI score0.00614EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2000/12/22 12:0 a.m.28 views

Дырка в oidldapd in из Oracle 8.1.7

Классическое переполнение буфера позволяет локальному пользователю получить привилегии root. Кроме того лог-файл создается без проверки символьных линков в открытой на запись директории...

1AI score
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2000/01/22 12:0 a.m.10 views

Oracle 8.1.7 - JSPJSPSQL Remote File Reading

Oracle 8.1.7 - JSPJSPSQL Remote File Reading...

1.9AI score
Exploits0
Rows per page
Query Builder