|
Oracle 9iAS OJSP Demo Scripts Cross-Site Scripting Vulnerability
Solution: The vendor advises administrators to remove the OJSP demo scripts. This may be accomplished by remnoving the following JSP files: /ora9ias/j2ee/OC4J_Demos/applications/ojspdemos/ojspdemos-web/basic/simple /ora9ias/j2ee/OC4J_Demos/applications/ojspdemos/ojspdemos-web/basic/hellouser This issue will reportedly be addressed in Oracle 9iAS version 9.0.3, which is expected to be released in the fall of 2002. |
|
|
Privacy Statement |
