Test ID:	1.3.6.1.4.1.25623.1.0.12126
Category:	Misc.
Title:	Oracle AS Web Cache Multiple vulnerabilities
Summary:	NOSUMMARY
Description:	Description: The remote host is running a version of Oracle Application Server Web Cache version 9.0.4.0 or older. There is a heap overflow condition in this version of the software, which may allow an attacker to execute arbitrary code on this host. Solution : http://otn.oracle.com/deploy/security/pdf/2004alert66.pdf See also : http://www.inaccessnetworks.com/ian/services/secadv01.txt Risk factor : High
Cross-Ref:	BugTraq ID: 9868 Common Vulnerability Exposure (CVE) ID: CVE-2004-0385 http://www.securityfocus.com/bid/9868 Bugtraq: 20040316 new security alert #66 issued in Oracle web cache (Google Search) http://marc.info/?l=bugtraq&m=107945649127635&w=2 Bugtraq: 20040408 Heap Overflow in Oracle 9iAS / 10g Application Server Web Cache (Google Search) http://marc.info/?l=bugtraq&m=108144419001770&w=2 CERT/CC vulnerability note: VU#413006 http://www.kb.cert.org/vuls/id/413006 http://www.inaccessnetworks.com/ian/services/secadv01.txt http://www.osvdb.org/4249 http://secunia.com/advisories/11118 http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0078.html XForce ISS Database: oracle-web-cache-vulnerabilities(15463) https://exchange.xforce.ibmcloud.com/vulnerabilities/15463
Copyright	This script is Copyright (C) 2004 Tenable Network Security

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.