← CVECheck
HomeVulnerabilities

CVE-2002-0564 — HIGH severity vulnerability (PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.)

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.

CVE IDCVE-2002-0564
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-07-03
Last modified2026-04-16
DescriptionPL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →