← back
CVE-2002-1632

CVE-2002-1632

EPSS 5.4%
Oracle 9i Application Server (9iAS) installs multiple sample pages that allow remote attackers to obtain environment variables and other sensitive information via (1) info.jsp, (2) printenv, (3) echo, or (4) echo2.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/8665http://www.kb.cert.org/vuls/id/717827http://www.kb.cert.org/vuls/id/SVIM-576QLZhttp://www.nextgenss.com/papers/hpoas.pdfhttp://www.oracle.com/technology/deploy/security/pdf/ias_modplsql_alert.pdfhttp://www.securityfocus.com/bid/6556