CERT Advisory CA-2002-08 Multiple vulnerabilities in Oracle Servers
Original release date: March 14, 2002
Last revised: —
A complete revision history can be found at the end of this file.
* Systems running Oracle8i Database
* Systems running Oracle9i Database
* Systems running Oracle9i Application Server
Multiple vulnerabilities in Oracle Application Server have recently
been discovered. These vulnerabilities include buffer overflows,
insecure default settings, failures to enforce access controls, and
failure to validate input. The impacts of these vulnerabilities
include the execution of arbitrary commands or code, denial of
service, and unauthorized access to sensitive information.