Intrusion Prevention

Oracle.Application.Server.Portal.XSS

Description

This indicates an attack attempt against a cross-site scripting (XSS) vulnerability in Oracle Application Server Portal.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP request. It allows a remote attacker to execute HTML code on the target user's web browser.

Affected Products

Oracle Application Server 10g

Impact

System Compromise

Recommended Actions

Currently we are not aware of any patch supplied by the vendor for this issue.