Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2002-0386

Publish Date: 06 Oct 2002

Author: @stake

                							

                source: http://www.securityfocus.com/bid/5902/info

Oracle 9i Application Server (9iAS) allows remote administration via a web access module. This vulnerability affects Oracle 9iAS running on Microsoft Windows.

When a custom request is sent to the Web Administration module, the module may react unpredictably. By sending a malicious custom request to the module, it is possible to cause the administration server to crash. A manual restart of the server is required to resume service.

GET /../ HTTP/1.1
host: hostname
&lt;ENTER&gt;
&lt;ENTER&gt;

GET /example.html/ HTTP/1.1
host: host name
Transfer-Encoding: chunked
&lt;ENTER&gt;
&lt;ENTER&gt;

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Oracle 9i Application Server 9.0.2 Web Cache Administration Tool - Denial of Service

Vulmon Search

About

Products

Connect