Oracle.Application.Testing.Suite.ActionServlet.Security.Bypass

description-logoDescription

This indicates an attack attempt to exploit an Authentication Bypass vulnerability in Oracle's Application Testing Suite.
The vulnerability is caused by an improper validation of user supplied data when the vulnerable application handles a maliciously crafted request. An attacker can exploit this to bypass authentication mechanism on the vulnerable application via a crafted request.

affected-products-logoAffected Products

Oracle Application Testing Suite 12.4.0.2
Oracle Application Testing Suite 12.5.0.2

Impact logoImpact

Security Bypass: Remote attackers can bypass security checks of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)