SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#649979

Oracle9iAS Web Cache vulnerable to buffer overflow

Overview

A remotely exploitable buffer overflow in the Oracle9iAS Web Cache allows intruders to execute arbitrary code or cause the web cache process to hang or exit.

I. Description

Defcom Labs has discovered a remotely exploitable buffer overflow vulnerability in the Oracle9iAS Web Cache (on all platforms) that allows intruders to either execute arbitrary code with the privileges of the process running the web cache process, or cause the web cache process to hang or crash entirely. The Oracle9iAS Web Cache provides four services that are enabled by default when the software is installed. These services and the associated ports they listen on are given below:

1100/tcp incoming web cache proxy
4000/tcp administrative interface
4001/tcp web XML invalidation port
4002/tcp statistics port

This vulnerability occurs in all four of the services listed above. For more information, see the Oracle Security Alert and/or the Defcom Labs Security Advisory. It is also important to note that an exploit exists and is publicly available for this vulnerability.

II. Impact

An intruder can execute arbitrary code with the privileges of the web cache process and/or cause the web cache process to hang or exit. Additionally, an intruder might be able to intercept and/or modify sensitive data traversing the web cache device such as credentials and other types of sensitive information.

III. Solution

Contact vendor for patches.

Systems Affected

VendorStatusDate NotifiedDate Updated
Oracle CorporationVulnerable25-Oct-2001

References


http://otn.oracle.com/deploy/security/pdf/webcache.pdf
http://www.securityfocus.com/archive/1/3BCEE434.F597D815@defcom.com
http://www.securityfocus.com/bid/3449

Credit

This document was written by Ian A. Finlay.

Other Information

Date Public:2001-10-18
Date First Published:2001-10-25
Date Last Updated:2003-04-09
CERT Advisory:CA-2001-29
CVE-ID(s):CVE-2001-0836
NVD-ID(s):CVE-2001-0836
US-CERT Technical Alerts: 
Metric:30.37
Document Revision:57

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2001 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader