CVE-2002-0103
N/A
N/A
Summary
An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://marc.info/?l=bugtraq&m=101041510727937&w=2
- http://otn.oracle.com/deploy/security/pdf/webcache2.pdf
- http://www.securityfocus.com/bid/3764
- http://www.securityfocus.com/bid/3761
- http://www.iss.net/security_center/static/7766.php
- http://www.iss.net/security_center/static/7768.php
References
- http://marc.info/?l=bugtraq&m=101041510727937&w=2
- http://otn.oracle.com/deploy/security/pdf/webcache2.pdf
- http://www.securityfocus.com/bid/3764
- http://www.securityfocus.com/bid/3761
- http://www.iss.net/security_center/static/7766.php
- http://www.iss.net/security_center/static/7768.php
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.