Back to search
CVE-2000-1235
Published: Jul 14, 2005
Modified: Sep 16, 2024
PUBLISHED
Description
The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20001219 Oracle WebDb engine brain-damagse
mailing-list
x_refsource_BUGTRAQ
20010110 Patch for Potential Vulnerability in Oracle Internet Application Server
mailing-list
x_refsource_BUGTRAQ
oracle-webdb-admin-access(5818)
vdb-entry
x_refsource_XF
20001221 Re: Oracle WebDb engine brain-damagse
mailing-list
x_refsource_BUGTRAQ
2150
vdb-entry
x_refsource_BID
20001223 Potential Vulnerabilities in Oracle Internet Application Server
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now