This script is Copyright (C) 2002-2014 Matt Moore
Arbitrary files can be read on the remote host.
In a default installation of Oracle 9iAS, it is possible
to use the mod_plsql module to perform a directory traversal
attack. This allows attackers to read arbitrary files on
See also :
Download the patch from the oracle metalink site.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Nessus Plugin ID: 10854 ()
Bugtraq ID: 3727
CVE ID: CVE-2001-1217
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.