CVE-2002-0563
Published Jul 3, 2002
Last updated 7 years ago
Overview
- Description
- The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-287
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:application_server:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC62E1B2-6964-4459-A1EF-A6A087C2960F"
},
{
"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C272DE0-3717-40D0-99A6-2B4108BF85A3"
},
{
"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4959B7CD-218F-47A3-A604-629B69E1905B"
},
{
"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6659ECF3-D355-4357-BB15-DAFA427FCD12"
},
{
"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B34A419-42C2-44FC-84C7-65699BA07120"
},
{
"criteria": "cpe:2.3:a:oracle:oracle8i:8.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E0E5C6A-FFEA-4855-AE5D-65806B6AFA59"
},
{
"criteria": "cpe:2.3:a:oracle:oracle8i:8.1.7_.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11D27BB6-DFA0-4CB7-B546-0E00C096BF37"
},
{
"criteria": "cpe:2.3:a:oracle:oracle9i:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C2720EA-55FB-40B1-BE58-3E16628DA248"
},
{
"criteria": "cpe:2.3:a:oracle:oracle9i:9.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9BB176D-7A94-4A91-89FC-9971E19FF7C6"
}
],
"operator": "OR"
}
]
}
]