CVE-2002-0387

Currently unrated

Key Information:

Vendor: Oracle
Status: One Application Server
Vendor: CVE Published:; 18 March 2003

Summary

Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows remote attackers to execute arbitrary code via a long HTTP request URL.

References

http://www.ciac.org/ciac/bulletins/n-064.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.atstake.com/research/advisories/2003/a031303-1...

vendor-advisoryx_refsource_ATSTAKE

https://exchange.xforce.ibmcloud.com/vulnerabilities/11529

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 18, 2003
Vulnerability Reserved
May 22, 2002