Lucene search
K

771 matches found

CERT
CERT
added 2002/02/28 12:0 a.m.27 views

Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP request

Overview A buffer overflow vulnerability exists in the Apache Procedural Language/Structured Query Language PL/SQL module used by Oracle9i Application Server iAS. A maliciously crafted HTTP request made to the PL/SQL module could cause a denial of service or execute arbitrary code with the...

7.5CVSS9.8AI score0.13139EPSS
Exploits0References6
CERT
CERT
added 2002/02/26 12:0 a.m.27 views

Oracle 9i Database Server PL/SQL module allows remote command execution without authentication

Overview Oracle Database Server allows remote users to execute system commands without authenticating. Description Oracle Database Server provides extended functionality through the use of Procedural Language/Structured Query Language PL/SQL libraries. PL/SQL includes commands to load arbitrary...

7.5CVSS7.2AI score0.08739EPSS
Exploits0References4
securityvulns
securityvulns
added 2002/02/06 12:0 a.m.25 views

Multiple Buffer Overflows in Oracle 9iAS

NGSSoftware Insight Security Research Advisory Name: Oracle PL/SQL Apache Module Systems Affected: Oracle 9iAS Platforms: Sun SPARC Solaris 2.6 MS Windows NT/2000 Server HP-UX 11.0/32-bit Severity: High Risk Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Date: 6th...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2002/02/06 12:0 a.m.39 views

Remote Compromise in Oracle 9i Database Server

NGSSoftware Insight Security Research Advisory Name: Oracle Remote Compromise Systems Affected: Oracle 9, 8 Platforms: All Operating Systems Severity: High Risk Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Date: 6th February 2002 Advisory number: NISR06022002A...

0.2AI score
Exploits0
CERT
CERT
added 2002/01/09 12:0 a.m.40 views

Oracle9i Application Server Apache PL/SQL module does not properly decode URL

Overview A vulnerability exists in the Apache Procedural Language/Structured Query Language PL/SQL module used by Oracle9i Application Server iAS in which the module does not properly decode double URL encoded strings. This vulnerability could allow an intruder to read files outside the web...

5CVSS9.1AI score0.54383EPSS
Exploits0References9
CERT
CERT
added 2002/01/03 12:0 a.m.22 views

Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via help page request

Overview A buffer overflow vulnerability exists in the Apache Procedural Language/Structured Query Language PL/SQL module used by Oracle9i Application Server iAS. This vulnerability could allow an unauthenticated remote attacker to cause a denial of service or execute arbitrary code on the system...

7.5CVSS10AI score0.08547EPSS
Exploits0References6
NVD
NVD
added 2001/12/21 5:0 a.m.25 views

CVE-2001-1216

Buffer overflow in PL/SQL Apache module in Oracle 9i Application Server allows remote attackers to execute arbitrary code via a long request for a help page...

7.5CVSS7.5AI score0.08547EPSS
Exploits0References5
securityvulns
securityvulns
added 2001/12/21 12:0 a.m.37 views

Buffer Overflow in Oracle 9iAS (#NISR20122001)

NGSSoftware Insight Security Research Advisory Name: Oracle PL/SQL Apache Module Systems Affected: Oracle 9iAS Platforms: Sun SPARC Solaris 2.6 MS Windows NT/2000 Server HP-UX 11.0/32-bit Severity: High Risk Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Date: 20t...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2001/12/21 12:0 a.m.51 views

Переполнение буфера и обратный путь в модуле Oracle PL/SQL (buffer overflow, directory traversal)

Некорректное кодирование URL позволяет обратный путь, переполнение буфера при длинной строке запроса к системе помощи в Web-Сервисе...

2.9AI score
Exploits0References1
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.37 views

CVE-1999-1068

Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request...

6.2AI score0.0212EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 1999/07/28 12:0 a.m.32 views

Oracle Webserver PL/SQL Stored Procedure GET Request DoS

It was possible to make the remote web server crash by supplying a too long argument to the cgi /ews-bin/fnord. An attacker may use this flaw to prevent your customers to access your website. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc...

5CVSS5.5AI score0.0212EPSS
Exploits0References1
Rows per page
Query Builder