Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Application Server Other Vulnerability - CVE-2004-1362 - Vulnerability Database
Oracle Application Server

Oracle Application Server Other Vulnerability - CVE-2004-1362

High
Reference: CVE-2004-1362
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2004-1362
Title: Oracle Application Server Other Vulnerability
Overview:

The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g when using the WE8ISO8859P1 character set does not perform character conversions properly which allows remote attackers to bypass access restrictions for certain procedures via an encoded URL with quotFFquot encoded sequences that are improperly converted to quotYquot characters.