This indicates an attack attempt against a cross-site scripting (XSS) vulnerability in Oracle Application Server Portal.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP request. It allows a remote attacker to execute HTML code on the target user's web browser.
Oracle Application Server 10g
Currently we are not aware of any patch supplied by the vendor for this issue.