Description

ISQL*Plus in Oracle 10g Application Server allows remote attackers to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.

Remediation

References

CVE-2004-1368

Related Vulnerabilities

WordPress Plugin Easy Forms for MailChimp Unspecified Vulnerability (6.3.2)

WordPress Plugin Page Animations And Transitions Unspecified Vulnerability (2.1.8)

Joomla Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-15699)

WordPress Plugin GD bbPress Attachments Multiple Vulnerabilities (2.2)

Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.12)

Severity

High

Classification

CVE-2004-1368

Tags

Missing Update Known Vulnerabilities