Unrated severityNVD Advisory· Published Feb 6, 2002· Updated Jun 16, 2026
CVE-2001-1371
CVE-2001-1371
Description
The default configuration of Oracle Application Server 9iAS 1.0.2.2 enables SOAP and allows anonymous users to deploy applications by default via urn:soap-service-manager and urn:soap-provider-manager.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:oracle:application_server:1.0.2:*:*:*:*:*:*:*
- Range: =1.0.2.2
Patches
Vulnerability mechanics
References
7- www.cert.org/advisories/CA-2002-08.htmlnvdPatchThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/4289nvdExploitPatchVendor Advisory
- www.kb.cert.org/vuls/id/736923nvdThird Party AdvisoryUS Government Resource
- marc.infonvd
- technet.oracle.com/deploy/security/pdf/ias_soap_alert.pdfnvd
- www.iss.net/security_center/static/8449.phpnvd
- www.nextgenss.com/papers/hpoas.pdfnvd
News mentions
0No linked articles in our index yet.