{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-01-07T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20020107 [PTL-2002-01] Vulnerabilities in Oracle9iAS Web Cache", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=101041510727937&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf"}, {"name": "3764", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/3764"}, {"name": "3761", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/3761"}, {"name": "oracle-appserver-webcached-privileges(7766)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/7766.php"}, {"name": "oracle-appserver-webcache-password(7768)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/7768.php"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0103", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20020107 [PTL-2002-01] Vulnerabilities in Oracle9iAS Web Cache", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=101041510727937&w=2"}, {"name": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf", "refsource": "CONFIRM", "url": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf"}, {"name": "3764", "refsource": "BID", "url": "http://www.securityfocus.com/bid/3764"}, {"name": "3761", "refsource": "BID", "url": "http://www.securityfocus.com/bid/3761"}, {"name": "oracle-appserver-webcached-privileges(7766)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/7766.php"}, {"name": "oracle-appserver-webcache-password(7768)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/7768.php"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:35:17.569Z"}, "title": "CVE Program Container", "references": [{"name": "20020107 [PTL-2002-01] Vulnerabilities in Oracle9iAS Web Cache", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=101041510727937&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf"}, {"name": "3764", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/3764"}, {"name": "3761", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/3761"}, {"name": "oracle-appserver-webcached-privileges(7766)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/7766.php"}, {"name": "oracle-appserver-webcache-password(7768)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/7768.php"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0103", "datePublished": "2002-03-15T05:00:00.000Z", "dateReserved": "2002-03-15T00:00:00.000Z", "dateUpdated": "2024-08-08T02:35:17.569Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "2C272DE0-3717-40D0-99A6-2B4108BF85A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "4959B7CD-218F-47A3-A604-629B69E1905B", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:application_server_web_cache:2.0.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "6659ECF3-D355-4357-BB15-DAFA427FCD12", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml."}, {"lang": "es", "value": "El programa de instalaci\u00f3n para el Oracle9i Web cache 2.0.0.x crea ejecutables y archivos de configuraci\u00f3n con permisos inseguros, que permiten a usuarios locales asignarse privilegios: (1) ejecutar webcache y (2) obtener la contrase\u00f1a de administrador de webcache.xml."}], "id": "CVE-2002-0103", "lastModified": "2026-04-16T00:27:16.627", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-03-25T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=101041510727937&w=2"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf"}, {"source": "cve@mitre.org", "url": "http://www.iss.net/security_center/static/7766.php"}, {"source": "cve@mitre.org", "url": "http://www.iss.net/security_center/static/7768.php"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/3761"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/3764"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=101041510727937&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://otn.oracle.com/deploy/security/pdf/webcache2.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.iss.net/security_center/static/7766.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.iss.net/security_center/static/7768.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/3761"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/3764"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}