CVE-2002-1639

Oracle Configurator before 11.5.7.17.32 and 11.5.6.16.53 allows remote attackers to obtain sensitive information via a request to the oracle.apps.cz.servlet.UiServlet servlet with the test parameter set to "version" or "host".

Date published : 2005-03-28

http://www.securityfocus.com/bid/4433

http://www.kb.cert.org/vuls/id/158323