Vulnerabilities > Oracle > Application Server > 1.0

DATE CVE VULNERABILITY TITLE RISK
2009-01-14 CVE-2008-4014 Multiple vulnerability in Oracle January 2009 Critical Patch Update
Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle
5.5
5.5
2005-11-02 CVE-2005-3453 Multiple vulnerability in Oracle October Security Update
Multiple unspecified vulnerabilities in Web Cache in Oracle Application Server 1.0 up to 10.1.2.0 has unknown impact and attack vectors, as identified by Oracle Vuln# (1) AS12 and (2) AS14.
network
low complexity
oracle
critical
 10.0
10
2005-11-02 CVE-2005-3452 Multiple vulnerability in Oracle October Security Update
Unspecified vulnerability in Web Cache in Oracle Application Server 1.0 up to 9.0.4.2 has unknown impact and attack vectors, as identified by Oracle Vuln# AS13.
network
low complexity
oracle
critical
 10.0
10
2005-11-02 CVE-2005-3450 Multiple vulnerability in Oracle October Security Update
Unspecified vulnerability in the HTTP Server in Oracle Application Server 1.0 up to 9.0.2.3 has unknown impact and attack vectors, as identified by Oracle Vuln# AS04.
network
low complexity
oracle
critical
 10.0
10
2000-12-31 CVE-2000-1236 Unspecified vulnerability in Oracle Application Server
SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL.
network
low complexity
oracle
7.5
7.5
2000-12-31 CVE-2000-1235 Unspecified vulnerability in Oracle Application Server
The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files.
network
low complexity
oracle
5.0
5.0