header-logo
Suggest Exploit
vendor:
Application Server 9i Webcache
by:
SecurityFocus
7.5
CVSS
HIGH
Arbitrary File Corruption
20
CWE
Product Name: Application Server 9i Webcache
Affected Version From: 9.0.2
Affected Version To: 9.0.2
Patch Exists: N/A
Related CWE: N/A
CPE: oracle:application_server:9i_webcache
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2004

Oracle Application Server 9i Webcache Arbitrary File Corruption Vulnerability

Oracle Application Server 9i Webcache is prone to an arbitrary file corruption vulnerability. The issue exists because dangerous characters are not removed from a certain parameter value, allowing an attacker to construct a URI that contains an absolute path to any target file. If this URI is followed by a user with sufficient privileges, garbage data is appended to the end of the specified file.

Mitigation:

Ensure that dangerous characters are removed from parameter values and that users with sufficient privileges are not allowed to follow malicious URIs.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13420/info

Oracle Application Server 9i Webcache is prone to an arbitrary file corruption vulnerability.

The issue exists becaue dangerous characters are not removed from a certain parameter value, allowing an attacker to construct a URI that contains an absolute path to any target file.

If this URI is followed by a user with sufficient privileges, garbage data is appended to the end of the specified file. 

http://example.com:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/opt/ORACLE/ias/9.0.2/Apache/Apache/conf/httpd.conf

Navigation

Suggest Exploit

Services By CQR