Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2378

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2378
Last Modified 25 Aug 2011 12:00:00
Published 26 Jul 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2378

Summary

Directory traversal vulnerability in Oracle Reports allows remote attackers to read arbitrary files via an absolute or relative path to the (1) CUSTOMIZE or (2) desformat parameters to rwservlet. NOTE: vector 2 is probably the same as CVE-2006-0289, and fixed in Jan 2006 CPU.

Vulnerable Systems

Application

  • Oracle Reports


References

XF - oracle-january2006-update(24321)

VUPEN - ADV-2006-0323

BUGTRAQ - 20060117 Oracle Reports - Read parts of files via desname (fixed after 874 days)

MISC - http://www.red-database-security.com/advisory/oracle_reports_read_any_xml_file.html

MISC - http://www.red-database-security.com/advisory/oracle_reports_read_any_file.html

SECTRACK - 1014527

SECTRACK - 1014525

SECUNIA - 18608

SECUNIA - 18493

BUGTRAQ - 20050719 Oracle Security Advisory: Read parts of any XML-file via customize parameter in Oracle Reports

BUGTRAQ - 20050719 Oracle Security Advisory: Read parts of any file via desformat in Oracle Reports


Last Updated: 27 May 2016 10:40:30