CVE-2001-0516 — MEDIUM (5.0)

Vulnerability Description

Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Oracle	Oracle8I	All versions
Oracle	Oracle9I	All versions

References

http://otn.oracle.com/deploy/security/pdf/net8_dos_alert.pdf
http://xforce.iss.net/alerts/advise82.phpPatchVendor Advisory
http://otn.oracle.com/deploy/security/pdf/net8_dos_alert.pdf
http://xforce.iss.net/alerts/advise82.phpPatchVendor Advisory

FAQ

What is CVE-2001-0516?

CVE-2001-0516 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not...

How severe is CVE-2001-0516?

CVE-2001-0516 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2001-0516?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Oracle8I, Oracle Oracle9I.