Search Results (Refine Search)
- CPE Product Version: cpe:/a:oracle:application_server:-
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2007-5531 |
Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02. Published: October 17, 2007; 7:17:00 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2000-1235 |
The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files. Published: December 31, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2000-1236 |
SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL. Published: December 31, 2000; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |