10
CVE-2004-0385
- EPSS 44.25%
- Veröffentlicht 01.06.2004 04:00:00
- Zuletzt bearbeitet 16.04.2026 00:27:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginHeap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allows remote attackers to execute arbitrary code via a long HTTP request method header to the Web Cache listener. NOTE: due to the vagueness of the Oracle advisory, it is not clear whether there are additional issues besides this overflow, although the advisory alludes to multiple "vulnerabilities."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Oracle ≫ Application Server Web Cache Version9.0.0.4.0
Oracle ≫ Application Server Web Cache Version9.0.2.3.0
Oracle ≫ Application Server Web Cache Version9.0.3.1.0
Oracle ≫ Application Server Web Cache Version9.0.4.0.0
Oracle ≫ E-business Suite Version11i
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 44.25% | 0.974 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|