Denial of Service Vulnerability in Oracle Net Services for Oracle 8i and 9i
CVE-2002-1118

Currently unrated

Key Information:

Vendor: Oracle
Status: Oracle8i; Oracle9i
Vendor: CVE Published:; 28 October 2002

What is CVE-2002-1118?

Oracle Net Services versions 8i and 9i contain a vulnerability in the TNS Listener component that allows remote attackers to execute a SERVICE_CURLOAD command, leading to a denial of service scenario. This can cause the service to hang or crash, impacting system availability. Organizations using affected versions should consider securing their Oracle environments to mitigate potential attacks.

References

http://otn.oracle.com/deploy/security/pdf/2002alert42rev1...

x_refsource_CONFIRM

http://www.iss.net/security_center/static/10283.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5678

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2002
Vulnerability Reserved
Sep 9, 2002