- Home
- CVEs with nessus.description==The remote version of Oracle Secure Backup Administration Server fails to sanitize user-supplied input to various parameters used in the 'login.php' script before using it.
By sending specially crafted arguments an attacker can exploit it to execute code on the remote host with the web server privileges.
By default the server runs with SYSTEM privileges under Windows.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top