Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20298
HistoryAug 05, 2008 - 12:00 a.m.

Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter)

2008-08-0500:00:00
vulners.com
16
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Team SHATTER Security Advisory

Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter)

August 4, 2008

Risk Level:
High

Affected versions:
Oracle Enterprise Manager Database Control 10gR1, 10gR2 and 11g (11.1.0.6)

Remote exploitable:
Yes

Credits:
This vulnerability was discovered and researched by Esteban Martínez
Fayó of Application Security Inc.

Details:
Cross-site scripting vulnerabilities occur when an attacker tricks a
legitimate web application into sending malicious code, generally in the
form of a script, to an unsuspecting end user. The attack usually
involves crafting a hyperlink with malicious script code embedded within
it. A valid user is likely to click this link since it points to a
resource on a trusted domain. The link can be posted on a web page, or
sent in an instant message, or email. Clicking on the link executes the
attacker-injected code in the context of the trusted web application.
Typically, the code steals session cookies, which can then be used to
impersonate a valid user.
The "REFRESHCHOICE" parameter used in web pages of Oracle Enterprise
Manager are vulnerable to cross-site scripting attacks. User supplied
input to these parameters is returned without proper sanitization,
allowing a malicious attacker to inject arbitrary scripting code.

Impact:
Attackers might steal administrator's session cookies, thereby allowing
the attacker to impersonate the valid user.

Vendor Status:
Vendor was contacted and a patch was released.

Workaround:
There is no workaround for this issue.

Fix:
Apply Oracle Critical Patch Update July 2008 available at Oracle Metalink.

Links:
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2008.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2603

Timeline:
Vendor Notification - 12/27/2007
Vendor Response - 12/27/2007
Fix - 7/15/2008
Public Disclosure - 7/23/2008
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)

iEYEARECAAYFAkiXMa8ACgkQ9EOAcmTuFN33twCfV6yidpr9eAmIbhvBTyY07uE6
RVIAoLKVCD5lsBM0IyksviVGbrhu1tlF
=CyQi
-----END PGP SIGNATURE-----

Related

prion 1
cve 1
nessus 1
securityvulns 2
oracle 1
prion
prion
Cross site scripting
2008-07-15 23:41:00
cve
cve
CVE-2008-2603
2008-07-15 23:41:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (July 2008 CPU)
2011-11-16 00:00:00
securityvulns
securityvulns
Oracle multiple security vulnerabilities
2008-08-05 00:00:00
Oracle Critical Patch Update Advisory - July 2008
2008-07-18 00:00:00
oracle
oracle
CPUJul2008 Advisory
2008-07-15 00:00:00
JSON
Related for SECURITYVULNS:DOC:20298
prion1cve1nessus1securityvulns2oracle1