|
Oracle Products Multiple Unspecified Vulnerabilities
|
|
Secunia Advisory:
|
SA15991
|
|
|
Release Date:
|
2005-07-13
|
|
Last Update:
|
2006-02-07
|
|
Popularity:
|
12,333 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Unknown
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Partial Fix
|
|
| Software: | Oracle Application Server 10g
Oracle Applications 11.x
Oracle Applications 11i
Oracle Database 10.x
Oracle Database 8.x
Oracle E-Business Suite 11i
Oracle Enterprise Manager 10.x
Oracle Enterprise Manager 9.x
Oracle JInitiator 1.x
Oracle9i Application Server
Oracle9i Collaboration Suite
Oracle9i Database Enterprise Edition
Oracle9i Database Standard Edition
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
47 vulnerabilities have been reported in various Oracle products. Some have an unknown impact, and others can be exploited to conduct cross-site scripting attacks, cause a DoS (Denial of Service), gain knowledge of sensitive information, or to manipulate data.
Details have been disclosed for the following vulnerabilities:
1) JDeveloper starts sqlplus using a plain text password as a parameter.
2) Database passwords are stored in plain text in the JDeveloper configuration files, "IDEConnections.xml", "XSQLConfig.xml", and "settings.xml" .
3) Temporary files created by Oracle Forms Builder in the local "temp" directory contain plain text username and password of the current database connection used by Forms Builder. These files are not deleted when Forms Builder exits.
4) Oracle Forms application creates a temporary file in the "/tmp" directory of the application server if the number of records retrieved from the database exceeds the parameter "buffered records". This temporary file is world-readable and contains an unencrypted copy of the retrieved database records. This potentially allows local users to gain knowledge of sensitive information.
5) Several unspecified SQL injection and parameter manipulation vulnerabilities in the Oracle E-Business Suite can be exploited to execute malicious SQL statements in the database with privileges of the application database account.
6) An unspecified error in the CWM2_OLAP_AW_AWUTIL package can be exploited by malicious users to cause a DoS.
7) Certain input passed to the init function in the ORASSO.WPG_SESSION package and the EventQueueDisplay function in the OWF_MGR.WF_EVENT_HTML package isn't properly verified. This can be exploited to inject and execute arbitrary SQL code with the privileges of the package owner.
8) Certain input passed to the web interface of Oracle XMLDB and Oracle iSQL*Plus isn't properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
9) The problem is that it is possible to shut down the TNS Listener via a specially crafted URL in Oracle Forms and iSQL*Plus.
The following supported products are affected by one or more of the vulnerabilities:
* Oracle Database 10g Release 1, versions 10.1.0.2, 10.1.0.3, 10.1.0.4
* Oracle9i Database Server Release 2, versions 9.2.0.5, 9.2.0.6
* Oracle9i Database Server Release 1, versions 9.0.1.4, 9.0.1.5, 9.0.1.5 FIPS
* Oracle8i Database Server Release 3, version 8.1.7.4
* Oracle8 Database Release 8.0.6, version 8.0.6.3
* Oracle Enterprise Manager Grid Control 10g, versions 10.1.0.2, 10.1.0.3
* Oracle Enterprise Manager 10g Database Control, versions 10.1.0.2, 10.1.0.3, 10.1.0.4
* Oracle Enterprise Manager Application Server Control, versions 9.0.4.0, 9.0.4.1
* Oracle Application Server 10g (9.0.4), versions 9.0.4.0, 9.0.4.1
* Oracle9i Application Server Release 2, versions 9.0.2.3, 9.0.3.1
* Oracle9i Application Server Release 1, version 1.0.2.2
* Oracle Collaboration Suite Release 2, versions 9.0.4.1, 9.0.4.2
* Oracle E-Business Suite and Applications Release 11i, versions 11.5.1 through 11.5.10
* Oracle E-Business Suite and Applications Release 11.0
* Oracle Workflow, versions 11.5.1 through 11.5.9.5
* Oracle Forms and Reports, versions 4.5.10.22, 6.0.8.25
* Oracle JInitiator, versions 1.1.8, 1.3.1
* Oracle Developer Suite, versions 9.0.2.3, 9.0.4, 9.0.4.1, 9.0.5, 10.1.2
* Oracle Express Server, version 6.3.4.0
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
27th Nov, 2009
|
New advisories:
|
8 |
|
New vulnerabilities:
|
15 |
|
Updated advisories:
|
11 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
26th Nov, 2009
|
New advisories:
|
15 |
|
New vulnerabilities:
|
37 |
|
Updated advisories:
|
48 |
|
|
|
|
|
|
|
 Solutions | More...
|
|
