ID CVE-2009-1978
Summary Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the July 2009 Oracle CPU. Oracle has not commented on claims from an independent researcher that this vulnerability allows remote authenticated users to execute arbitrary code with SYSTEM privileges via vectors involving property_box.php.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:secure_backup:10.2.0.3
    cpe:2.3:a:oracle:secure_backup:10.2.0.3
CVSS
Base: 9.0 (as of 15-07-2009 - 10:49)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
d2sec via4
name Oracle Secure Backup 10.3.0.1 RCE
url http://www.d2sec.com/exploits/oracle_secure_backup_10.3.0.1_rce.html
metasploit via4
description This module exploits an authentication bypass vulnerability in login.php in order to execute arbitrary code via a command injection vulnerability in property_box.php. This module was tested against Oracle Secure Backup version 10.3.0.1.0 (Win32).
id MSF:AUXILIARY/ADMIN/ORACLE/OSB_EXECQR2
last seen 2018-09-09
modified 2017-07-24
published 2009-09-16
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/oracle/osb_execqr2.rb
title Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
packetstorm via4
data source https://packetstormsecurity.com/files/download/81262/osbs-bypass.txt
id PACKETSTORM:81262
last seen 2016-12-05
published 2009-09-15
reporter Luca Carettoni
source https://packetstormsecurity.com/files/81262/Oracle-Secure-Backup-Server-Bypass-Command-Injection.html
title Oracle Secure Backup Server Bypass / Command Injection
refmap via4
bid 35678
confirm http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
misc http://www.zerodayinitiative.com/advisories/ZDI-09-059/
osvdb 55904
sectrack 1022565
secunia 35776
vupen ADV-2009-1900
xf oracle-sb-sbc-unspecified(51762)
saint via4
bid 35678
description Oracle Secure Backup property_box.php type parameter command execution
id database_oracle_backupver
osvdb 55904
title oracle_secure_backup_property_box_type
type remote
Last major update 28-11-2016 - 14:07
Published 14-07-2009 - 19:30
Last modified 16-08-2017 - 21:30
Back to Top