Oracle Application Server Forms 'buffered records' Temp File Information Disclosure

2005-07-12T10:29:54
ID OSVDB:18246
Type osvdb
Reporter Alexander Kornbrust(ak@red-database-security.com)
Modified 2005-07-12T10:29:54

Description

Vulnerability Description

Oracle Application Server contains a flaw in the Oracle Forms componentthat may lead to an unauthorized information disclosure. The issue is triggered when the number of records in a Oracle Forms application retrieved from the database exceeds the parameter "buffered records", and a temp file is created to hold a copy of the database table which will disclose database record information resulting in a loss of confidentiality.

Technical Description

An attacker must supply valid authentication credentials for the server hosting the database in order to exploit this vulnerability.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Critical Patch Update - July 2005) to address this vulnerability.

Short Description

Oracle Application Server contains a flaw in the Oracle Forms componentthat may lead to an unauthorized information disclosure. The issue is triggered when the number of records in a Oracle Forms application retrieved from the database exceeds the parameter "buffered records", and a temp file is created to hold a copy of the database table which will disclose database record information resulting in a loss of confidentiality.

References:

Vendor Specific Advisory URL Security Tracker: 1014466 Secunia Advisory ID:15991 Secunia Advisory ID:16121 Other Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101782-1 Other Advisory URL: http://www.red-database-security.com/advisory/oracle_forms_unsecure_temp_file_handling.html Other Advisory URL: http://www.us-cert.gov/cas/techalerts/TA04-245A.html Mail List Post: http://marc.theaimsgroup.com/?l=full-disclosure&m=112128389427393&w=2 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0216.html Keyword: AS04 ISS X-Force ID: 21347 Generic Informational URL: http://www.eweek.com/article2/0,1895,1836304,00.asp CVE-2005-2294 CERT VU: 435974 Bugtraq ID: 14238