Title: Oracle 9i Application Server Path Revealing Vulnerability
Severity: MODERATE
Description:
Oracle 9i Application Server comes with an Apache-based web server and Java servlet engine.
A vulnerability exists that could allow a malicious user to view the full path to the web folder. If the malicious user were to send the Oracle 9i AS an HTTP request for a non-existant .jsp file, the server would return an error page containing path information to the web folder.
An HTTP request for
http://target.com/folder/java/unknown.jsp
would yield an error message containing a path similar to:
c:\oracle\ias\apache\apache\htdocs\target\folder\java\jsp\unknown.jsp
A similar vulnerability was found in Apache Tomcat 3.1 which may be related to this vulnerability. See BugTraq ID 1531 for details.
Affected Products:
- Oracle Oracle9i Application Server 1.0.2
References:
- Oracle: Oracle 9i Application Server
- Oracle: Oracle Unintended JSP Execution Vulnerability
- SecurityFocus: BugTraq ID 1531: Apache Tomcat 3.1 Path Revealing Vulnerability
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
