Oracle HTTP Server isqlplus Cross-Site Scripting Vulnerability

Bugtraq ID: 9484
Class: Input Validation Error
CVE: CVE-2004-2115
Remote: Yes
Local: No
Published: Jan 24 2004 12:00AM
Updated: Jul 12 2009 02:06AM
Credit: Discovery credited to Rafel Ivgi, The-Insider <theinsider@012.net.il>.
Vulnerable: Oracle Oracle HTTP Server 9.2 .0
+ Apache Apache 1.3.22
Oracle Oracle HTTP Server 9.0.1
Oracle Oracle HTTP Server 8.1.7
+ Apache Apache 1.3.12
+ Oracle Oracle8 8.1.7
+ Oracle Oracle8i Enterprise Edition 8.1.7 .0.0
+ Oracle Oracle8i Standard Edition 8.1.7
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus