The webcacheadmin module in Oracle Webcache 9i allows remote attackers to corrupt arbitrary files via a full pathname in the cache_dump_file parameter.
References
Link | Resource |
---|---|
http://www.red-database-security.com/advisory/oracle_webcache_append_file_vulnerabilitiy.html | Exploit Vendor Advisory |
http://www.securityfocus.com/bid/13420 | Exploit Vendor Advisory |
http://www.osvdb.org/15909 | Vendor Advisory |
http://secunia.com/advisories/15143 | Vendor Advisory |
http://marc.info/?l=bugtraq&m=111472615519295&w=2 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/20310 |
Configurations
Information
Published : 2005-05-02 21:00
Updated : 2017-07-10 18:32
NVD link : CVE-2005-1382
Mitre link : CVE-2005-1382
JSON object : View
CWE
Products Affected
oracle
- application_server_web_cache