Oracle Application Server BPEL Module Cross-Site Scripting

Severity: MEDIUM

CVE Identifier: CVE-2008-4014

Advisory Date: JUL 21, 2015

DESCRIPTION

Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

SOLUTION

Trend Micro Deep Security DPI Rule Number: 1000552

Trend Micro Deep Security DPI Rule Name: 1000552 - Generic Cross Site Scripting(XSS) Prevention

AFFECTED SOFTWARE AND VERSION

oracle application_server 1.0
oracle application_server 1.0.2
oracle application_server 1.0.2.0
oracle application_server 1.0.2.1
oracle application_server 1.0.2.1s
oracle application_server 1.0.2.2
oracle application_server 1.0.2.2.2
oracle application_server 10.1.0.2
oracle application_server 10.1.0.3
oracle application_server 10.1.0.3.1
oracle application_server 10.1.0.4
oracle application_server 10.1.2
oracle application_server 10.1.2.0
oracle application_server 10.1.2.0.0
oracle application_server 10.1.2.0.1
oracle application_server 10.1.2.0.2
oracle application_server 10.1.2.1
oracle application_server 10.1.2.1.0
oracle application_server 10.1.2.2
oracle application_server 10.1.2.2.0
oracle application_server 10.1.2.3
oracle application_server 10.1.2_.0.1
oracle application_server 10.1.3
oracle application_server 10.1.3.0
oracle application_server 10.1.3.0.0
oracle application_server 10.1.3.1
oracle application_server 10.1.3.1.0
oracle application_server 10.1.3.2.0
oracle application_server 10.1.3.3
oracle application_server 10.1.3.3.0
oracle application_server 10.1.4.0
oracle application_server 10.1.4.0.1
oracle application_server 10.1.4.1
oracle application_server 10.1.4.1.0
oracle application_server 10.2.0.0
oracle application_server 11i
oracle application_server 3.0.7
oracle application_server 4.0
oracle application_server 4.0.8
oracle application_server 4.0.8.2
oracle application_server 6.0.8.26_ps17
oracle application_server 7.0.4.4
oracle application_server 8.1.7
oracle application_server 9.0
oracle application_server 9.0.2
oracle application_server 9.0.2.0.0
oracle application_server 9.0.2.0.1
oracle application_server 9.0.2.1
oracle application_server 9.0.2.2
oracle application_server 9.0.2.3
oracle application_server 9.0.3
oracle application_server 9.0.3.1
oracle application_server 9.0.4
oracle application_server 9.0.4.0
oracle application_server 9.0.4.1
oracle application_server 9.0.4.2
oracle application_server 9.0.4.3
oracle application_server 9.2.0.6
oracle application_server 9.2.0.7

Oracle Application Server BPEL Module Cross-Site Scripting

DESCRIPTION

TREND MICRO PROTECTION INFORMATION

SOLUTION

AFFECTED SOFTWARE AND VERSION

參考資源

技術支援

關於趨勢

Oracle Application Server BPEL Module Cross-Site Scripting

DESCRIPTION

TREND MICRO PROTECTION INFORMATION

SOLUTION

AFFECTED SOFTWARE AND VERSION

參考資源

技術支援

關於趨勢

美洲 (The Americas)

中東與非洲 (Middle East & Africa)

歐洲

亞太地區 (Asia Pacific)