Oracle Single Sign-On Login Page Authentication Credential Disclosure Vulnerability

Bugtraq ID: 10009
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Mar 30 2004 12:00AM
Updated: Mar 30 2004 12:00AM
Credit: Discovery is credited to Madison Gurkha <http://www.madison-gurkha.com/>.
Vulnerable: Oracle Single Sign-On
+ Oracle Oracle HTTP Server 9.2 .0
 + Oracle Oracle HTTP Server 9.0.1
+ Oracle Oracle HTTP Server 8.1.7
+ Oracle Oracle9i Application Server 9.0.3 .1
 + Oracle Oracle9i Application Server 9.0.3
+ Oracle Oracle9i Application Server 9.0.2 .3
 + Oracle Oracle9i Application Server 9.0.2 .2
 + Oracle Oracle9i Application Server 9.0.2 .1
 + Oracle Oracle9i Application Server 9.0.2 .0.1
 + Oracle Oracle9i Application Server 9.0.2 .0.0
 + Oracle Oracle9i Application Server 9.0.2
+ Oracle Oracle9i Application Server 1.0.2 .2.2
 + Oracle Oracle9i Application Server 1.0.2 .2
 + Oracle Oracle9i Application Server 1.0.2 .1s
 + Oracle Oracle9i Application Server 1.0.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus