Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Application Server Other Vulnerability - CVE-2002-0564 - Vulnerability Database
Oracle Application Server

Oracle Application Server Other Vulnerability - CVE-2002-0564

High
Reference: CVE-2002-0564
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2002-0564
Title: Oracle Application Server Other Vulnerability
Overview:

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.