Vulnerabilities > CVE-2002-0858 - Remote Security vulnerability in Oracle9i Developer Edition

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

oracle

NVD

Published: 2002-09-05

Updated: 2016-10-18

Summary

catsnmp in Oracle 9i and 8i is installed with a dbsnmp user with a default dbsnmp password, which allows attackers to perform restricted database operations and possibly gain other privileges.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Oracle8I * Oracle Oracle9I *	2

References

http://marc.info/?l=bugtraq&m=102918005402808&w=2
http://www.iss.net/security_center/static/9932.php
http://www.osvdb.org/9476