CVE-2005-1382 : The webcacheadmin module in Oracle Webcache 9i allows remote attackers to corrup

The webcacheadmin module in Oracle Webcache 9i allows remote attackers to corrupt arbitrary files via a full pathname in the cache_dump_file parameter.

Published 2005-05-03 04:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2005-1382

Oracle » Application Server Web Cache
cpe:2.3:a:oracle:application_server_web_cache:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2005-1382

EPSS FAQ

53.76%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 98 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2005-1382

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2005-1382

https://exchange.xforce.ibmcloud.com/vulnerabilities/20310
http://www.securityfocus.com/bid/13420

Exploit;Vendor Advisory
http://www.osvdb.org/15909

Vendor Advisory
http://secunia.com/advisories/15143

Vendor Advisory

CVEs referencing this url
http://www.red-database-security.com/advisory/oracle_webcache_append_file_vulnerabilitiy.html

Exploit;Vendor Advisory
http://marc.info/?l=bugtraq&m=111472615519295&w=2

Jump to

Vulnerability Details : CVE-2005-1382

Products affected by CVE-2005-1382

Exploit prediction scoring system (EPSS) score for CVE-2005-1382

CVSS scores for CVE-2005-1382

References for CVE-2005-1382