Denial of Service Vulnerability in Oracle Web Cache in Oracle9iAS 9.0.2

Denial of Service Vulnerability in Oracle Web Cache in Oracle9iAS 9.0.2

CVE-2002-0386 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The administration module for Oracle Web Cache in Oracle9iAS (9i Application Suite) 9.0.2 allows remote attackers to cause a denial of service (crash) via (1) an HTTP GET request containing a ".." (dot dot) sequence, or (2) a malformed HTTP GET request with a chunked Transfer-Encoding with missing data.

Learn more about our Web App Pen Testing.