CVE-2001-0836

Oracle Application Server Web Cache - Buffer Overflow

Title source: rule

Description

Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by andreas · perlremotewindows

https://www.exploit-db.com/exploits/21121

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/7306

[US Government Resource] http://www.cert.org/advisories/CA-2001-29.html

[Various Sources] http://otn.oracle.com/deploy/security/pdf/webcache.pdf

[Third Party Advisory, VDB Entry] http://www.osvdb.org/5534

[Mailing List] http://marc.info/?l=bugtraq&m=100395487007578&w=2

[US Government Resource] http://www.kb.cert.org/vuls/id/649979

[Mailing List] http://marc.info/?l=bugtraq&m=100342151132277&w=2

Scores

EPSS 0.2277

EPSS Percentile 95.9%

Details

Status published

Products (1)

oracle/application_server_web_cache 2.0.0.1

Published Dec 06, 2001

Tracked Since Feb 18, 2026