BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
CVE-2014-5880 - Authentication Bypass in Oracle Demantra Feb 28 2014 03:19PM
Portcullis Advisories (advisories portcullis-security com)
Vulnerability title: Authentication Bypass in Oracle Demantra
CVE: CVE-2014-5880
Vendor: Oracle
Product: Demantra
Affected version: 12.2.1
Fixed version: 12.2.3
Reported by: Oliver Gruskovnjak

Details:

The authentication filter in Oracle Demantra is broken by design.

For example the page:

/deman...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus