← CVECheck
HomeVulnerabilities

CVE-2002-0562 — MEDIUM severity vulnerability (The default configuration of Oracle 9i Application Server 1.)

The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.

CVE IDCVE-2002-0562
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-07-03
Last modified2026-04-16
DescriptionThe default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →