SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Oracle Fusion Middleware OpenSSO Agent Insecure Deserialization

Category: WEB-ATTACKS      

Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Access Manager. Successful attacks of this vulnerability can result in takeover of Oracle Access Manager.

References
http://en.wikipedia.org/wiki/Directory_traversal_attack


Relevant Information