The Oracle Discoverer servlet in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote malicious users to shut down an Oracle TNS Listener via a TNS STOP command in a request that uses the database/TNS alias, aka AS01.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle application server 10.1.2.0.2 |
||
oracle application server 10.1.2.2 |
||
oracle application server 9.0.4.3 |