Published: 14/10/2005 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The forms servlet (f90servlet) in Oracle Forms 4.5.10.22 allows remote malicious users to cause a denial of service (TNS listener stop) via a userid parameter that contains a STOP command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle forms 6.0.8.25
oracle forms 6i
oracle forms 9i
oracle forms 10g
oracle forms 4.5.10.22
oracle forms 5.0

source: wwwsecurityfocuscom/bid/15039/info Oracle Forms is susceptible to a vulnerability that allows remote attackers to stop the TNS Listener service, denying further database service to legitimate users By issuing a specific HTTP request, remote attackers may cause the affected application to stop the TNS Listener This issue was re ...

NVD-CWE-Other http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0175.html http://www.red-database-security.com/advisory/oracle_forms_shutdown.html http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html http://www.securityfocus.com/bid/15039 http://secunia.com/advisories/15991/http://securityreason.com/securityalert/65 http://marc.info/?l=bugtraq&m=112870645720399&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/22543 https://nvd.nist.gov https://www.exploit-db.com/exploits/26336/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-3207

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect