Rewterz Threat Advisory – CVE-2015-9251 – Oracle Fusion Middleware MapViewer jQuery Cross-Site Scripting Vulnerability
April 18, 2019Rewterz Threat Advisory – Oracle PeopleSoft Enterprise Learning Management Multiple Vulnerabilities
April 18, 2019Rewterz Threat Advisory – CVE-2015-9251 – Oracle Fusion Middleware MapViewer jQuery Cross-Site Scripting Vulnerability
April 18, 2019Rewterz Threat Advisory – Oracle PeopleSoft Enterprise Learning Management Multiple Vulnerabilities
April 18, 2019Severity
High
Analysis Summary
Oracle has patched hundreds of vulnerabilities in its quarterly patch. Many of these are very old known vulnerabilities.
CVE-2016-1000031
Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution
CVE-2016-2141
JGroups before 4.0 does not require the proper headers for the ENCRYPT and AUTH protocols from nodes joining the cluster, which allows remote attackers to bypass security restrictions and send and receive messages within the cluster via unspecified vectors.
CVE-2016-3092
The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string.
CVE-2014-0114
Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to “manipulate” the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.
CVE-2015-1832
XML external entity (XXE) vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service (resource consumption) via vectors involving XmlVTI and the XML datatype.
CVE-2014-0107
The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or access external resources via a crafted (1) xalan:content-header, (2) xalan:entities, (3) xslt:content-header, or (4) xslt:entities property, or a Java property that is bound to the XSLT 1.0 system-property function.
CVE-2019-2719
This vulnerability is similar to the above vulnerability.
Impact
- Denial of Service
- Exposure of sensitive information
- Manipulation of data
- Security Bypass
Affected Vendors
Oracle
Affected Products
- Oracle Siebel CRM 8..5.1.0 through 8.5.1.7
- 8.6.0
- Oracle Siebel CRM 8.6.1.
Remediation
Apply update.