CVE-2001-0836

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server Web Cache
Vendor: CVE Published:; 6 December 2001

Summary

Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/7306

vdb-entryx_refsource_XF

http://www.cert.org/advisories/CA-2001-29.html

third-party-advisoryx_refsource_CERT

http://otn.oracle.com/deploy/security/pdf/webcache.pdf

x_refsource_CONFIRM

EPSS Score

21% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 6, 2001
Vulnerability Reserved
Nov 22, 2001

.