CVE-2000-0818

Published Dec 19, 2000

Last updated 7 years ago

Overview

Description: The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:listener:7.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1401CC07-14D9-4558-819A-85D2B8DA867F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:listener:8.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75A28B67-A114-4956-B0FC-C6D22DE8E87F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:listener:8.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "465571B9-5189-4CD6-B279-23B340476C5C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References