Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server 9.0.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-2345
Oracle 9i Application Server 9.0.2 stores the web cache administrator interface password in plaintext, which allows remote malicious users to gain access.
Oracle Application Server 9.0.2
7.5
CVSSv2
CVE-2002-1264
Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote malicious users to execute arbitrary code via a long USERID parameter in the isqlplus URL.
Oracle Oracle9i 9.0.1
Oracle Oracle9i Release 2 9.2.1
Oracle Oracle9i Release 2 9.2.2
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0
7.5
CVSSv2
CVE-2002-0843
Buffer overflows in the ApacheBench benchmark support program (ab.c) in Apache prior to 1.3.27, and Apache 2.x prior to 2.0.43, allow a malicious web server to cause a denial of service and possibly execute arbitrary code via a long response.
Oracle Application Server 9.0.2.1
Apache Http Server 1.3.23
Oracle Oracle8i 8.1.7.0.0 Enterprise
Oracle Database Server 8.1.7
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.24
Oracle Application Server 9.0.2
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Oracle Application Server 1.0.2.1s
Apache Http Server 1.3
Apache Http Server 1.3.12
Apache Http Server 1.3.3
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.9
7.5
CVSSv2
CVE-2002-0947
Buffer overflow in rwcgi60 CGI program for Oracle Reports Server 6.0.8.18.0 and previous versions, as used in Oracle9iAS and other products, allows remote malicious users to execute arbitrary code via a long database name parameter.
Oracle Reports 6.0.8
Oracle Application Server 9.0.2
7.2
CVSSv2
CVE-2004-1363
Buffer overflow in extproc in Oracle 10g allows remote malicious users to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
Oracle Database Server 8.1.7.4
Oracle Application Server 9.0.2.1
Oracle Application Server
Oracle Database Server 9.0.1.5
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager 9.0.1
Oracle Database Server 9.0.4
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Database Server 9.2.0.4
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.2
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle Database Server 10.1.0.2
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.1
Oracle Enterprise Manager 9
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2
7.2
CVSSv2
CVE-2004-1707
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libc...
Oracle Application Server 1.0.2.2.2
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server Portal 3.0.9.8.5
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Standard 9.0.1.5
Oracle Oracle9i Standard 9.0.2
Oracle Application Server
Oracle Application Server 1.0.2
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Application Server Portal 9.0.2.3b
1 EDB exploit
6.8
CVSSv2
CVE-2002-0840
Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 prior to 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote malicious users to execute script as other web page visitors v...
Apache Http Server 2.0.42
Oracle Application Server 9.0.2.1
Apache Http Server 1.3.23
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle8i 8.1.7 .0.0 Enterprise
Oracle Database Server 8.1.7
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Oracle Oracle9i 9.0
Apache Http Server 1.3.19
Oracle Database Server 9.2.1
Apache Http Server 2.0.39
Apache Http Server 1.3.24
Oracle Application Server 9.0.2
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 2.0.41
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
1 EDB exploit
5.5
CVSSv2
CVE-2008-4014
Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Oracle Application Server 1.0
Oracle Application Server 7.0.4.4
Oracle Application Server 10.1.4.0
Oracle Application Server 9.0.2.0.1
Oracle Application Server 1.0.2.2
Oracle Application Server 9.2.0.7
Oracle Application Server 10.1.2.1
Oracle Application Server 10.1.3
Oracle Application Server 10.1.3.1.0
Oracle Application Server 9.0.4
Oracle Application Server 10.2.0.0
Oracle Application Server 1.0.2.0
Oracle Application Server 3.0.7
Oracle Application Server 9.0.4.3
Oracle Application Server 10.1.2
Oracle Application Server 10.1.2.0
Oracle Application Server 10.1.2.3
Oracle Application Server 6.0.8.26 Ps17
Oracle Application Server 9.0.2.0.0
Oracle Application Server 4.0.8.2
Oracle Application Server 11i
Oracle Application Server 10.1.3.0
5
CVSSv2
CVE-2006-6699
Multiple CRLF injection vulnerabilities in Oracle Portal 9.0.2 and possibly other versions allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the enc parameter to (1) calendarDialog.jsp or (2) fred.jsp. ...
Oracle Application Server Portal 9.0.2
5
CVSSv2
CVE-2004-1369
The TNS Listener in Oracle 10g allows remote malicious users to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset for a pointer that references incorrect memory.
Oracle Application Server 9.0.2.0.0
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle Oracle10g Enterprise 9.0.4 .0
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle8i Enterprise 8.1.5 .0.0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.0.6 .3
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Client 9.2.0.2
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »