CVE-2002-1639

Currently unrated

Key Information:

Vendor: Oracle
Status: Configurator
Vendor: CVE Published:; 1 April 2002

Summary

Oracle Configurator before 11.5.7.17.32 and 11.5.6.16.53 allows remote attackers to obtain sensitive information via a request to the oracle.apps.cz.servlet.UiServlet servlet with the test parameter set to "version" or "host".

References

http://www.securityfocus.com/bid/4433

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/158323

third-party-advisoryx_refsource_CERT-VN

http://securitytracker.com/id?1003967

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability Reserved
Mar 28, 2005
Vulnerability published
Apr 1, 2002