CVE-2001-0836

Oracle9iAS Web Cache 2.0.0.1 - Remote Code Execution via Long HTTP GET Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0836. PoCs published by andreas.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Oracle 9iAS Web Cache 2.0.0.1.0 by sending a malicious HTTP GET request with shellcode to achieve remote code execution. The shellcode creates a file 'c:\defcom.iyd' on the target system.

Description

Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by andreas · perlremotewindows

https://www.exploit-db.com/exploits/21121

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Oracle 9iAS Web Cache 2.0.0.1.0 by sending a malicious HTTP GET request with shellcode to achieve remote code execution. The shellcode creates a file 'c:\defcom.iyd' on the target system.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Oracle 9iAS Web Cache 2.0.0.1.0

No auth needed

Prerequisites: Network access to the target system · Oracle 9iAS Web Cache 2.0.0.1.0 running on Windows NT

MITRE ATT&CK