Oracle.Reports.Server.DESName.Remote.File.Overwrite

description-logoDescription

This indicates a possible exploit of a Remote File Overwrite vulnerability in Oracle Reports Server. The web interface of Oracle Reports Server is prone to an arbitrary file overwrite vulnerability. An attacker may overwrite files with System-Level or Oracle Applications Server User privileges. This vulnerability could let an attacker cause full database failure, denial of service or even a total system compromise.

affected-products-logoAffected Products

Oracle Oracle Reports6i 6.0.8 .19
Oracle Oracle Reports6i 6.0.8
Oracle Oracle Reports 9i
Oracle Oracle Reports 6
Oracle Oracle Reports 10g 9.0.4 .3.3
Oracle Oracle Reports 10g 9.0.4
Oracle Oracle Reports 10g 9.0.3
Oracle Oracle Reports 10g 9.0.2
Oracle Oracle Reports 10g 9.0.1
Oracle Oracle Reports 10g 9.0

Impact logoImpact

Disclosure or Modification of sensitive system data

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor or upgrade to a non-vulnerable version if available.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)