HTTP: Oracle SQL Configuration Information Leakage
This signature detects attempts to download the XSQLConfig.xml file used by Oracle Server. This file contains sensitive configuration information.
Extended Description
Oracle 9iAS includes two important configuration files called "XSQLConfig.xml" and "soapConfig.xml". The configuration files contain sensitive information, such as database usernames and passwords. Both of these files are accessible to remote clients without any authentication. It is possible for malicious users to access and read the files through a virtual directory. Possibly sensitive information disclosed to attackers may assist in further attacks.
Affected Products
Oracle oracle8i_standard_edition
References
BugTraq: 4290
CVE: CVE-2002-0568
URL: http://www.kb.cert.org/vuls/id/476619 http://www.securityspace.com/smysecure/catid.html?id=10855
Short Name
HTTP:INFO-LEAK:ORACLE-SQL
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CA-2002-08 CVE-2002-0568 Configuration Information Leakage Oracle SQL bid:4290
Release Date
12/17/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Oracle
CVSS Score
2.1