Vulnerabilities > CVE-2002-0857 - Unspecified vulnerability in Oracle Database Server and Oracle8I
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote attackers to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora configuration file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |