CVE-2002-0103
First published: Fri Mar 15 2002(Updated: )
An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Application Server Web Cache | =2.0.0.2 | |
| Oracle Application Server Web Cache | =2.0.0.1 | |
| Oracle Application Server Web Cache | =2.0.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/oracle
- canonical/oracle application server web cache
- version/oracle application server web cache/2.0.0.2
- version/oracle application server web cache/2.0.0.1
- version/oracle application server web cache/2.0.0.0