Summary
In a default installation of Oracle 9iAS, it is possible to use the mod_plsql module to perform a directory traversal attack.
Solution
Download the patch from the oracle metalink site.
References
Severity
Classification
-
CVE CVE-2001-1217 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- A Really Simple Chat Multiple XSS Vulnerabilities
- An Image Gallery Directory Traversal Vulnerability
- Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities
- Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
- Adiscon LogAnalyzer 'highlight' Parameter Cross Site Scripting Vulnerability