CVE-2001-0517 — Oracle Oracle8i vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Oracle8i

Timeline

PublishedJul 21

Latest updateApr 30

Description

Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/oracle8i8.1.6, 8.1.7+1

Patches

Patch: xforce.iss.net ↗Patch: xforce.iss.net ↗

🔴Vulnerability Details

GHSA

GHSA-fvqm-5v9c-fh3r: Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transpor↗2022-04-30

▶

CVEList

CVE-2001-0517: Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transpor↗2002-03-09

▶