APP: Oracle GoldenGate Veridata Server XML SOAP Request Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Oracle GoldenGate Veridata Server. Its due to a boundary error while parsing XML SOAP requests containing an overly long tag string. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Oracle Fusion Middleware is prone to a remote vulnerability in Oracle GoldenGate Veridata. Successful exploits will allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will likely result in denial-of-service conditions. This vulnerability affects the following supported versions: 3.0.0.4
Affected Products
Oracle goldengate_veridata
Short Name
APP:ORACLE:GOLDENGATE-SOAP-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2010-4416 GoldenGate Oracle Overflow Request SOAP Server Veridata XML bid:45868
Release Date
07/21/2011
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Oracle
CVSS Score
5.0