2 matches found
CVE-2004-1877
The CVE-2004-1877 issue is documented in connected sources as a phishing vulnerability in Oracle 9iAS Single Sign-On. Specifically, the p_submit_url value in the sample login form for Oracle SSO (9iAS, Release 2/9.0.2) can be exploited by remote attackers to spoof the login page, potentially caus...
CVE-2004-1877
The psubmiturl value in the sample login form in the Oracle 9i Application Server 9iAS Single Sign-on Administrators Guide, Release 29.0.2 for Oracle SSO allows remote attackers to spoof the login page, which could allow users to inadvertently reveal their username and password...