Oracle Business Transaction Management Server FlashTunnelService WriteToFile Message RCE Vulnerability
Gravité: : Critique
Date du conseil: 21 juillet 2015
Description
Oracle Business Transaction Management Server is prone to a vulnerability that may allow attackers to write to arbitrary local files. Successful exploits may allow attackers to compromise the system in the context of the user running the vulnerable application, other attacks are also possible.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005128
Trend Micro Deep Security DPI Rule Name: 1005128 - Oracle Business Transaction Management Server 'FlashTunnelService' WriteToFile Message Remote Code Execution
Affected software and version:
- Oracle Business Transaction Management Server