EUVD-2013-3768

Malware in sbrugna...

EUVD-2019-12078

Malware in sbrugna...

CVE-2013-3836

Unspecified vulnerability in the Oracle Web Cache component in Oracle Fusion Middleware 11.1.1.6 and 11.1.1.7 allows remote authenticated users to affect confidentiality via vectors related to ESI/Partial Page Caching...

CVE-2019-2438

Vulnerability in the Oracle Web Cache component of Oracle Fusion Middleware subcomponent: ESI/Partial Page Caching. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web Cache...

Design/Logic Flaw

Vulnerability in the Oracle Web Cache component of Oracle Fusion Middleware subcomponent: ESI/Partial Page Caching. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web Cache...

CVE-2019-2438

Vulnerability in the Oracle Web Cache component of Oracle Fusion Middleware subcomponent: ESI/Partial Page Caching. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Web Cache...

CVE-2019-2438

The CVE-2019-2438 entry concerns Oracle Fusion Middleware’s Oracle Web Cache component (ESI/Partial Page Caching). Affected version is 11.1.1.9.0. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Cache, with exploitation described as diffi...

Oracle Web Cache Unspecified Client Request Handling DoS - Ver2

A vulnerability exists in Oracle Web Cache. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

CVE-2013-3836

Unspecified vulnerability in the Oracle Web Cache component in Oracle Fusion Middleware 11.1.1.6 and 11.1.1.7 allows remote authenticated users to affect confidentiality via vectors related to ESI/Partial Page Caching...

Oracle HTTP Server mod_access Restriction Bypass (CVE-2005-1383)

The Oracle HTTP Server OHS is bundled with recent Oracle Database Server releases 8.1.7 and above, 9i and10g. The OHS is provided to enable the distribution of applications over the web. The OHS is derivative of the Apache HTTP server project, and enhanced with a set of Oracle extensions. There...

CVE-2005-3452

Unspecified vulnerability in Web Cache in Oracle Application Server 1.0 up to 9.0.4.2 has unknown impact and attack vectors, as identified by Oracle Vuln AS13...

CVE-2005-3453

Technical details for CVE-2005-3453 are not publicly provided in the supplied documents; the connected data lists only generic references to multiple unspecified vulnerabilities in Oracle Web Cache. Monitor for updates.

CVE-2005-3453

Multiple unspecified vulnerabilities in Web Cache in Oracle Application Server 1.0 up to 10.1.2.0 has unknown impact and attack vectors, as identified by Oracle Vuln 1 AS12 and 2 AS14...

EUVD-2002-1622

Multiple buffer overflows in Oracle Web Cache for Oracle 9i Application Server 9iAS allow remote attackers to execute arbitrary code via unknown vectors...

Oracle web cache buffer overflow

Heap overflow on invalid HTTP/HTTPS request...

[Full-Disclosure] Heap Overflow in Oracle 9iAS / 10g Application Server Web Cache

InAccess Networks www.inaccessnetworks.com Security Advisory Advisory Name: Heap Overflow in Oracle 9iAS / 10g Application Server Web Cache Release Date: 8 April 2004 Application: Oracle Web Cache - all versions except 9.0.4.0.0 for Windows, AIX & Tru64 which already contain fixes Platform: All...

CVE-2002-0386

The administration module for Oracle Web Cache in Oracle9iAS 9i Application Suite 9.0.2 allows remote attackers to cause a denial of service crash via 1 an HTTP GET request containing a ".." dot dot sequence, or 2 a malformed HTTP GET request with a chunked Transfer-Encoding with missing data...

CVE-2002-0386

The CVE-2002-0386 entry concerns Oracle9iAS Web Cache, specifically the administration module of Oracle Web Cache in Oracle9iAS 9.0.2. The vulnerability allows remote denial of service (crash) via two conditions: (1) an HTTP GET containing a “..” sequence, and (2) a malformed HTTP GET with chunke...

CVE-2002-0386

The administration module for Oracle Web Cache in Oracle9iAS 9i Application Suite 9.0.2 allows remote attackers to cause a denial of service crash via 1 an HTTP GET request containing a ".." dot dot sequence, or 2 a malformed HTTP GET request with a chunked Transfer-Encoding with missing data...

Oracle Web Cache Admin Module Multiple GET Request Method DoS

It was possible to kill the web server by requesting '/.' or '/../', or sending an invalid request using chunked content encoding. An attacker may exploit this vulnerability to crash the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from Carmichae...