This script is Copyright (C) 2002-2015 Matt Moore
Arbitrary code may be run on the remote host.
Oracle 9i Application Server uses Apache as it's web
server. There is a buffer overflow in the mod_plsql module
which allows an attacker to run arbitrary code.
See also :
Oracle has released a patch for this vulnerability, which
is available from:
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false
Nessus Plugin ID: 10840 ()
Bugtraq ID: 3726
CVE ID: CVE-2001-1216
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.