Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2002-0563
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-03 Jul, 2002 | 04:00
Updated At-03 Apr, 2025 | 01:03

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and Oracle Java Process Manager (7) oprocmgr-status and (8) oprocmgr-service, which can be used to control Java processes.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.05.0MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Type: Primary
Version: 2.0
Base score: 5.0
Base severity: MEDIUM
Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N
CPE Matches
Oracle Corporation
oracle
>>application_server>>1.0.2
cpe:2.3:a:oracle:application_server:1.0.2:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>application_server_web_cache>>2.0.0.0
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>application_server_web_cache>>2.0.0.1
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>application_server_web_cache>>2.0.0.2
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.2:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>application_server_web_cache>>2.0.0.3
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.3:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>oracle8i>>8.1.7
cpe:2.3:a:oracle:oracle8i:8.1.7:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>oracle8i>>8.1.7_.1
cpe:2.3:a:oracle:oracle8i:8.1.7_.1:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>oracle9i>>9.0
cpe:2.3:a:oracle:oracle9i:9.0:*:*:*:*:*:*:*
Oracle Corporation
oracle
>>oracle9i>>9.0.1
cpe:2.3:a:oracle:oracle9i:9.0.1:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-287Primarynvd@nist.gov
CWE ID: CWE-287
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://marc.info/?l=bugtraq&m=101301813117562&w=2cve@mitre.org
N/A
http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdfcve@mitre.org
Patch
Vendor Advisory
http://securitytracker.com/id?1009167cve@mitre.org
N/A
http://www.appsecinc.com/Policy/PolicyCheck7024.htmlcve@mitre.org
N/A
http://www.cert.org/advisories/CA-2002-08.htmlcve@mitre.org
Patch
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/168795cve@mitre.org
US Government Resource
http://www.nextgenss.com/papers/hpoas.pdfcve@mitre.org
N/A
http://www.osvdb.org/13152cve@mitre.org
N/A
http://www.osvdb.org/705cve@mitre.org
N/A
http://www.securityfocus.com/bid/4293cve@mitre.org
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/8455cve@mitre.org
N/A
http://marc.info/?l=bugtraq&m=101301813117562&w=2af854a3a-2127-422b-91ae-364da2661108
N/A
http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdfaf854a3a-2127-422b-91ae-364da2661108
Patch
Vendor Advisory
http://securitytracker.com/id?1009167af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.appsecinc.com/Policy/PolicyCheck7024.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.cert.org/advisories/CA-2002-08.htmlaf854a3a-2127-422b-91ae-364da2661108
Patch
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/168795af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.nextgenss.com/papers/hpoas.pdfaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.osvdb.org/13152af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.osvdb.org/705af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/bid/4293af854a3a-2127-422b-91ae-364da2661108
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/8455af854a3a-2127-422b-91ae-364da2661108
N/A
Hyperlink: http://marc.info/?l=bugtraq&m=101301813117562&w=2
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdf
Source: cve@mitre.org
Resource:
Patch
Vendor Advisory
Hyperlink: http://securitytracker.com/id?1009167
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.appsecinc.com/Policy/PolicyCheck7024.html
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.cert.org/advisories/CA-2002-08.html
Source: cve@mitre.org
Resource:
Patch
Third Party Advisory
US Government Resource
Hyperlink: http://www.kb.cert.org/vuls/id/168795
Source: cve@mitre.org
Resource:
US Government Resource
Hyperlink: http://www.nextgenss.com/papers/hpoas.pdf
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.osvdb.org/13152
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.osvdb.org/705
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/4293
Source: cve@mitre.org
Resource:
Patch
Vendor Advisory
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/8455
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://marc.info/?l=bugtraq&m=101301813117562&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://otn.oracle.com/deploy/security/pdf/ias_modplsql_alert.pdf
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Vendor Advisory
Hyperlink: http://securitytracker.com/id?1009167
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.appsecinc.com/Policy/PolicyCheck7024.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.cert.org/advisories/CA-2002-08.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Third Party Advisory
US Government Resource
Hyperlink: http://www.kb.cert.org/vuls/id/168795
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
US Government Resource
Hyperlink: http://www.nextgenss.com/papers/hpoas.pdf
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.osvdb.org/13152
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.osvdb.org/705
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/4293
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Vendor Advisory
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/8455
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Change History
0Changes found
Details not found