Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The XML parser in Oracle 9i Application Server Release 2 9.0.3.0 and 9.0.3.1, 9.0.2.3 and earlier, and Release 1 1.0.2.2 and 1.0.2.2.2, and Database Server Release 2 9.2.0.1 and later, allows remote attackers to cause a denial of service (CPU and memory consumption) via a SOAP message containing a crafted DTD.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oracle 9i应用/数据库服务器SOAP XML DTD拒绝服务攻击漏洞
Vulnerability Description
Oracle Database是一款商业性质大型数据库系统,Oracle 9i应用服务器基于Apache Web服务器,支持SOAP、PL/SQL、XSQL、JSP等环境。 Oracle 9i应用/数据库服务器在处理部分SOAP消息时存在问题,远程攻击者可以利用这个漏洞对服务器进行拒绝服务攻击。 攻击者可以构建XML中包含特殊的数据类型定义(DTDs)SOAP消息,Oracle 9i应用/数据库服务器处理时会产生错误,导致拒绝服务。目前没有详细漏洞细节提供。
CVSS Information
N/A
Vulnerability Type
N/A