Oracle Single Sign-On Login Page Authentication Credential Disclosure Vulnerability

Bugtraq ID: 10009
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Mar 30 2004 12:00AM
Updated: Mar 30 2004 12:00AM
Credit: Discovery is credited to Madison Gurkha <http://www.madison-gurkha.com/>.
Vulnerable: Oracle Single Sign-On
+ Oracle Oracle HTTP Server 9.2 .0
+ Oracle Oracle HTTP Server 9.0.1
+ Oracle Oracle HTTP Server 8.1.7
+ Oracle Oracle9i Application Server 9.0.3 .1
+ Oracle Oracle9i Application Server 9.0.3
+ Oracle Oracle9i Application Server 9.0.2 .3
+ Oracle Oracle9i Application Server 9.0.2 .2
+ Oracle Oracle9i Application Server 9.0.2 .1
+ Oracle Oracle9i Application Server 9.0.2 .0.1
+ Oracle Oracle9i Application Server 9.0.2 .0.0
+ Oracle Oracle9i Application Server 9.0.2
+ Oracle Oracle9i Application Server 1.0.2 .2.2
+ Oracle Oracle9i Application Server 1.0.2 .2
+ Oracle Oracle9i Application Server 1.0.2 .1s
+ Oracle Oracle9i Application Server 1.0.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus