Vulnerability in N/a
CVE-2005-1383
The OHS component 1.0.2 through 10.x, when UseWebcacheIP is disabled, in Oracle Application Server allows remote attackers to bypass HTTP Server mod_access restrictions via a request to the webcache TCP port 7778.
EPSS: 0.610 (98.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 13418 (vdb-entry, x_refsource_BID)
- 20050428 Webcache Client Requests Bypass OHS mod_access Restrictions (mailing-list, x_refsource_BUGTRAQ)
- www.red-database-security.com/advisory/oracle_webcache_bypass.html (x_refsource_MISC)
- 15908 (x_refsource_OSVDB, vdb-entry)
- 15143 (x_refsource_SECUNIA, third-party-advisory)
- oracle9ias-application-cache-url-bypass(20311) (vdb-entry, x_refsource_XF)