Denial of Service Vulnerability in Oracle9iAS Web Cache 2.0.0.x
CVE-2002-0102

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server Web Cache
Vendor: CVE Published:; 25 March 2002

What is CVE-2002-0102?

Oracle9iAS Web Cache 2.0.0.x has a vulnerability that allows remote attackers to disrupt service by sending specially crafted requests. Attackers can exploit this by sending a flood of null character requests to specific TCP ports (1100, 4000, 4001, and 4002), or by making requests with a high volume of '.' characters directed at TCP port 4000. This can result in a denial of service, rendering the web cache non-functional and affecting its operation.

References

http://www.securityfocus.com/bid/3760

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/7765

vdb-entryx_refsource_XF

http://otn.oracle.com/deploy/security/pdf/webcache2.pdf

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 25, 2002
Vulnerability Reserved
Mar 15, 2002