Intrusion Prevention

Oracle.Forms.And.Reports.Remote.Code.Execution

Description

This indicates an attack attempt to exploit a remote Code Execution Vulnerability in Oracle Forms and Reports.
The vulnerability is due to an error when a vulnerable servlet handles a maliciously crafted HTTP request. A remote attacker could exploit this to execute arbitrary code execution within the context of the application, via a crafted HTTP request.

Affected Products

Oracle Forms and Reports 11.1.1.4
Oracle Forms and Reports 11.1.2.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html#AppendixFMW

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2021-04-21	18.063	Modified	Sig Added

References

http://www.exploit-db.com/exploits/31253/

ID	38021
Created	Mar 12, 2014
Updated	Feb 14, 2024
CVE ID
Risk
Known Exploited	Yes
Exploit Prediction Score	93.53%
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Oracle
Profile Type	Other

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Oracle.Forms.And.Reports.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Oracle.Forms.And.Reports.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center