Description

Oracle 9i Application Server allows remote attackers to bypass access restrictions for configuration files via a direct request to the XSQL Servlet (XSQLServlet).

Remediation

References

CVE-2002-0569

Related Vulnerabilities

WordPress Plugin Oi Yandex.Maps for WordPress Cross-Site Scripting (3.2.7)

Roundcube Improper Privilege Management Vulnerability (CVE-2017-8114)

MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-0504)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.30)

WordPress Plugin Easy Digital Downloads-Simple eCommerce for Selling Digital Files Cross-Site Scripting (3.1.0.4)

Severity

High

Classification

CVE-2002-0569

Tags

Missing Update Known Vulnerabilities