Oracle.Application.Testing.Suite.ActionServlet.Security.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass vulnerability in Oracle's Application Testing Suite.
The vulnerability is caused by an improper validation of user supplied data when the vulnerable application handles a maliciously crafted request. An attacker can exploit this to bypass authentication mechanism on the vulnerable application via a crafted request.
Affected Products
Oracle Application Testing Suite 12.4.0.2
Oracle Application Testing Suite 12.5.0.2
Impact
Security Bypass: Remote attackers can bypass security checks of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |