CVE-2001-0126 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2001-0126

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet.

Affected Software

Name	Vendor	Start Version	End Version
Oracle8i	Oracle	8.1.7 (including)	8.1.7 (including)

References

http://marc.info/?l=bugtraq\u0026m=97906670012796\u0026w=2
http://marc.info/?l=bugtraq\u0026m=98027700625521\u0026w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5905
http://marc.info/?l=bugtraq\u0026m=97906670012796\u0026w=2
http://marc.info/?l=bugtraq\u0026m=98027700625521\u0026w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5905