Oracle.Application.Service.WebCache.Multiple.Vulnerabilities
Description
Oracle Application Servers has an arbitrary file corruption vulnerability.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can potentially make arbitrary changes to files on an affected system or execute arbitrary script code within the context of the application.
Affected Products
Oracle9iAS Application Server Any version
Oracle9iAS Web Cache Any version
Impact
System Compromise: Remote attackers can access or modify data in the database of the affected application
Recommended Actions
Currently we are not aware of any vendor-supplied patches for this issue. We advise you to contact the vendor for further information regarding obtaining and applying an appropriate fix.
http://www.oracle.com/support/index.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-03-28 | 14.582 | Name:Oracle. Application. Service. WebCache. File. Corruption:Oracle. Application. Service. WebCache. Multiple. Vulnerabilities |