Unrated severityNVD Advisory· Published Mar 25, 2002· Updated Apr 16, 2026

CVE-2002-0103

Description

An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.

Affected products

Oracle Corporation/Application Server Web Cache3 versions
cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:application_server_web_cache:2.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_server_web_cache:2.0.0.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

otn.oracle.com/deploy/security/pdf/webcache2.pdfnvdPatchVendor Advisory
marc.infonvd
www.iss.net/security_center/static/7766.phpnvd
www.iss.net/security_center/static/7768.phpnvd
www.securityfocus.com/bid/3761nvd
www.securityfocus.com/bid/3764nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000